Kaspersky ID:
KLA10682
Дата обнаружения:
13/10/2015
Обновлено:
26/09/2023

Описание

Multiple serious vulnerabilities have been found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code or obtain sensitive information.

Below is a complete list of vulnerabilities

  1. An unknown vulnerability can be exploited via specially designed print job to obtain sensitive information;
  2. Use-after-free vulnerability can be exploited to execute arbitrary code;
  3. An unknown vulnerability can be exploited via Format action to cause denial of service;
  4. Buffer overflow can be exploited to obtain sensitive information or execute arbitrary code;
  5. An unknown vulnerability can be exploited via data reading to obtain sensitive information;
  6. An unknown vulnerability related to JavaScript API can be exploited to bypass security restrictions.

Technical details

Vulnerability (1) can be triggered via launching print job on remote printer.

Vulnerability (3) can be triggered via using the Format action on unspecified fields.

Vulnerability (5) can be triggered via reading light object’s RGB data. This vulnerability leads to color objects information disclosure.

(6) related to ANSendForReview method.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Связанные продукты

Список CVE

  • CVE-2015-5583
    warning
  • CVE-2015-6697
    high
  • CVE-2015-6687
    critical
  • CVE-2015-5586
    critical
  • CVE-2015-6686
    high
  • CVE-2015-6712
    high
  • CVE-2015-6719
    high
  • CVE-2015-6685
    high
  • CVE-2015-6684
    critical
  • CVE-2015-7624
    critical
  • CVE-2015-6698
    high
  • CVE-2015-6705
    critical
  • CVE-2015-6704
    warning
  • CVE-2015-6707
    high
  • CVE-2015-6706
    critical
  • CVE-2015-6717
    high
  • CVE-2015-6708
    high
  • CVE-2015-6693
    high
  • CVE-2015-6714
    high
  • CVE-2015-6691
    critical
  • CVE-2015-6690
    high
  • CVE-2015-6689
    high
  • CVE-2015-6688
    high
  • CVE-2015-7623
    high
  • CVE-2015-7622
    critical
  • CVE-2015-6723
    high
  • CVE-2015-6722
    high
  • CVE-2015-6683
    critical
  • CVE-2015-6715
    high
  • CVE-2015-6721
    high
  • CVE-2015-6695
    high
  • CVE-2015-6720
    high
  • CVE-2015-7619
    high
  • CVE-2015-6716
    high
  • CVE-2015-6718
    high
  • CVE-2015-6710
    high
  • CVE-2015-6709
    high
  • CVE-2015-6725
    high
  • CVE-2015-7616
    high
  • CVE-2015-7617
    high
  • CVE-2015-7618
    high
  • CVE-2015-6699
    warning
  • CVE-2015-6724
    high
  • CVE-2015-6711
    high
  • CVE-2015-7614
    high
  • CVE-2015-7615
    high
  • CVE-2015-6696
    high
  • CVE-2015-6692
    critical
  • CVE-2015-7620
    high
  • CVE-2015-7621
    high
  • CVE-2015-6702
    warning
  • CVE-2015-6703
    warning
  • CVE-2015-6700
    critical
  • CVE-2015-6713
    critical
  • CVE-2015-6694
    high
  • CVE-2015-6701
    warning

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Confirm changes?
Your message has been sent successfully.