Critical severity9.8NVD Advisory· Published Oct 13, 2016· Updated Jun 17, 2026
CVE-2016-6939
CVE-2016-6939
Description
Heap-based buffer overflow in Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-6994.
Affected products
9cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: <=11.0.17
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*range: <=15.006.30201
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*range: <=15.017.20053
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*+ 3 more
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*range: <=15.006.30201
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*range: <=15.017.20053
- (no CPE)range: <11.0.18
- (no CPE)range: <15.006.30243
- Range: <15.020.20039
Patches
Vulnerability mechanics
References
3- helpx.adobe.com/security/products/acrobat/apsb16-33.htmlnvdMitigationVendor Advisory
- www.securityfocus.com/bid/93487nvd
- www.securitytracker.com/id/1036986nvd
News mentions
0No linked articles in our index yet.