Critical severity9.8NVD Advisory· Published Oct 13, 2016· Updated Jun 17, 2026
CVE-2016-6949
CVE-2016-6949
Description
Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.18, Acrobat and Acrobat Reader DC Classic before 15.006.30243, and Acrobat and Acrobat Reader DC Continuous before 15.020.20039 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-1089, CVE-2016-1091, CVE-2016-6944, CVE-2016-6945, CVE-2016-6946, CVE-2016-6952, CVE-2016-6953, CVE-2016-6961, CVE-2016-6962, CVE-2016-6963, CVE-2016-6964, CVE-2016-6965, CVE-2016-6967, CVE-2016-6968, CVE-2016-6969, CVE-2016-6971, CVE-2016-6979, CVE-2016-6988, and CVE-2016-6993.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
9cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:adobe:acrobat:*:*:*:*:*:*:*:*range: <=11.0.17
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:classic:*:*:*range: <=15.006.30201
- cpe:2.3:a:adobe:acrobat_dc:*:*:*:*:continuous:*:*:*range: <=15.017.20053
cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*+ 3 more
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:classic:*:*:*range: <=15.006.30201
- cpe:2.3:a:adobe:acrobat_reader_dc:*:*:*:*:continuous:*:*:*range: <=15.017.20053
- (no CPE)range: <11.0.18
- (no CPE)range: <15.006.30243
- Range: <15.020.20039
Patches
Vulnerability mechanics
References
4- helpx.adobe.com/security/products/acrobat/apsb16-33.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/93491nvdThird Party AdvisoryVDB Entry
- www.verisign.com/en_US/security-services/security-intelligence/vulnerability-reports/articles/index.xhtmlnvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1036986nvd
News mentions
0No linked articles in our index yet.