Adobe Acrobat Reader is one of the well-known PDF readers in the market. It has got a huge user base and is used as a by-default PDF reader in systems. However, in recent times several JavaScript vulnerabilities have been detected in Adobe Acrobat Reader. These vulnerabilities were discovered by Aleksander Nikolic of Cisco Talos and can be easily triggered by sending email attachments or visiting unknown websites.
A particular code of JavaScript embedded in a PDF file may result in heap corruption while opening a PDF file in Adobe Acrobat Reader DC 2020.006.20043. The code may be executed arbitrarily by memory manipulation. As confirmed by Talos 20202.012.20043 version of Adobe Acrobat Reader DC is affected. To resolve the issue Cisco Talos consulted with Adobe and tried to help the affected customers.