Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader

Description

Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information, cause denial of service, gain privileges.

Below is a complete list of vulnerabilities:

1. A buffer overflow vulnerability can be exploited to execute arbitrary code.
2. A heap buffer overflow vulnerability can be exploited to execute arbitrary code.
3. An out of bounds read vulnerability can be exploited to cause denial of service or obtain sensitive information.
4. An out of bounds read vulnerability can be exploited to obtain sensitive information.
5. An out of bounds read vulnerability can be exploited to execute arbitrary code.
6. An out of bound write vulnerability can be exploited to execute arbitrary code.
7. An information disclosure vulnerability can be exploited to gain privileges or obtain sensitive information.
8. A use after free vulnerability can be exploited to execute arbitrary code.

Original advisories

• APSB21-29

Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

• Adobe-Acrobat-Reader-DC-Continuous
• Adobe-Acrobat-DC-Continuous
• Adobe-Acrobat-Reader-2017
• Adobe-Acrobat-2017
• Adobe-Acrobat-Reader-2020
• Adobe-Acrobat-2020

CVE list

• CVE-2021-21044
  critical
• CVE-2021-21038
  critical
• CVE-2021-21086
  critical
• CVE-2021-28561
  critical
• CVE-2021-28560
  critical
• CVE-2021-28558
  critical
• CVE-2021-28557
  warning
• CVE-2021-28555
  high
• CVE-2021-28565
  critical
• CVE-2021-28564
  critical
• CVE-2021-28559
  high
• CVE-2021-28562
  critical
• CVE-2021-28550
  critical
• CVE-2021-28553
  critical

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com