Kaspersky Threats

Erkennungsdatum

?

02/13/2018

Schweregrad

?

Kritisch

Beschreibung

Multiple serious vulnerabilities have been found in Adobe Acrobat and Adobe Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code and gain priveleges.

Below is a complete list of vulnerabilities:

Use-after-free vulnerabilities can be exploited to execute arbitrary code;
Heap buffer overflow vulnerabilities can be exploited to execute arbitrary code;
Out-of-bounds write vulnerabilities can be exploited to execute arbitrary code;
Security Mitigation Bypass vulnerability can be exploited remotely to gain priveleges;
Out-of-bounds read vulnerabilities can be exploited remotely to execute arbitrary code;

Beeinträchtigte Produkte

Acrobat DC 2018.009.20050 and earlier versions
Acrobat Reader DC (Continuous Track) 2018.009.20050 and earlier versions
Acrobat 2017 2017.011.30070 and earlier versions
Acrobat Reader 2017 2017.011.30070 and earlier versions
Acrobat DC (Classic Track) 2015.006.30394 and earlier versions
Acrobat Reader DC (Classic Track) 2015.006.30394 and earlier versions

Lösung

Update to the latest versions
Download Adobe Acrobat DC
Download Adobe Acrobat Reader DC

Ursprüngliche Informationshinweise

Adobe Security Bulletin

Folgen

?

ACE

[?]

PE

[?]

CVE-IDS

?

Link zum Original

Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken

Erkennungsdatum ?	02/13/2018
Schweregrad ?	Kritisch
Beschreibung	Multiple serious vulnerabilities have been found in Adobe Acrobat and Adobe Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code and gain priveleges. Below is a complete list of vulnerabilities: Use-after-free vulnerabilities can be exploited to execute arbitrary code; Heap buffer overflow vulnerabilities can be exploited to execute arbitrary code; Out-of-bounds write vulnerabilities can be exploited to execute arbitrary code; Security Mitigation Bypass vulnerability can be exploited remotely to gain priveleges; Out-of-bounds read vulnerabilities can be exploited remotely to execute arbitrary code;
Beeinträchtigte Produkte	Acrobat DC 2018.009.20050 and earlier versions Acrobat Reader DC (Continuous Track) 2018.009.20050 and earlier versions Acrobat 2017 2017.011.30070 and earlier versions Acrobat Reader 2017 2017.011.30070 and earlier versions Acrobat DC (Classic Track) 2015.006.30394 and earlier versions Acrobat Reader DC (Classic Track) 2015.006.30394 and earlier versions
Lösung	Update to the latest versions Download Adobe Acrobat DC Download Adobe Acrobat Reader DC
Ursprüngliche Informationshinweise	Adobe Security Bulletin
Folgen ?	ACE [?] PE [?]
CVE-IDS ?	CVE-2018-48906.8Critical CVE-2018-49046.8Critical CVE-2018-49106.8Critical CVE-2018-48886.8Critical CVE-2018-48926.8Critical CVE-2018-49026.8Critical CVE-2018-49116.8Critical CVE-2018-49136.8Critical CVE-2018-48986.8Critical CVE-2018-49016.8Critical CVE-2018-49156.8Critical CVE-2018-49166.8Critical CVE-2018-48804.3Critical CVE-2018-48814.3Critical CVE-2018-48824.3Critical CVE-2018-48834.3Critical CVE-2018-48844.3Critical CVE-2018-48854.3Critical CVE-2018-48864.3Critical CVE-2018-48874.3Critical CVE-2018-48894.3Critical CVE-2018-48914.3Critical CVE-2018-48934.3Critical CVE-2018-48944.3Critical CVE-2018-48964.3Critical CVE-2018-48974.3Critical CVE-2018-48994.3Critical CVE-2018-49004.3Critical CVE-2018-49034.3Critical CVE-2018-49054.3Critical CVE-2018-49064.3Critical CVE-2018-49074.3Critical CVE-2018-49084.3Critical CVE-2018-49094.3Critical CVE-2018-49124.3Critical CVE-2018-49144.3Critical
	Link zum Original
	Informieren Sie sich über die Statistiken der in Ihrer Region verbreiteten Sicherheitslücken

KLA11193Multiple vulnerabilities in Adobe Arcobat&Reader

KLA11193
Multiple vulnerabilities in Adobe Arcobat&Reader