|CVSS SCORE||7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)|
Acrobat Pro DC
The specific flaw exists within the handling of DLL search paths. In specific situations an attacker can force Acrobat Pro DC to load an arbitrary DLL from specific locations. An attacker can leverage this vulnerability to execute code under the context of the current process.
Adobe has issued an update to correct this vulnerability. More details can be found at:
|CREDIT||AbdulAziz Hariri and Jasiel Spelman of HP Zero Day Initiative