Kaspersky Threats

Kaspersky ID:

KLA11357

Detect Date:

11/13/2018

Updated:

01/22/2024

Description

Vulnerability related to NTLM SSO hash theft was found in Adobe Acrobat and Reader. Malicious users can exploit this vulnerability to obtain sensitive information.

Original advisories

APSB18-40

Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

CVE list

CVE-2018-15979
warning

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!

Kaspersky ID:

KLA11357

Detect Date:

11/13/2018

Updated:

01/22/2024

Severity

high

Solution

Update to the latest version
Download Adobe Acrobat DC
Download Adobe Acrobat Reader DC

Impacts

OSI

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Affected products

Adobe Acrobat DC (Continuous) 2019.008.20080 and earlier versions
Adobe Acrobat Reader DC (Continuous) 2019.008.20080 and earlier versions
Adobe Acrobat 2017 (Classic 2017) 2017.011.30105 and earlier versions
Adobe Acrobat Reader 2017 (Classic 2017) 2017.011.30105 and earlier versions
Adobe Acrobat DC (Classic 2015) 2015.006.30456 and earlier versions
Adobe Acrobat Reader DC (Classic 2015) 2015.006.30456 and earlier versions

Information disclosure Vulnerability in Adobe Acrobat and Reader

Description

Original advisories

Exploitation

Related products

CVE list

Read more