Kaspersky ID:
KLA10734
Дата обнаружения:
12/01/2016
Обновлено:
06/07/2026

Описание

Multiple serious vulnerabilities have been found in Adobe products. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions or execute arbitrary code.

Below is a complete list of vulnerabilities

  1. Untrusted search path vulnerability at Adobe Download Manager can be exploited locally to gain privileges via a specially designed resources;
  2. An unknown vulnerability can be exploited to cause denial of service or execute arbitrary code;
  3. Improper Global object handling can be exploited to bypass JavaScript API restrictions;
  4. Use-after-free vulnerability at Search, Doc and AGM can be exploited to execute arbitrary code;
  5. Double free vulnerability can be exploited to execute arbitrary code via a specially designed ExtGState dictionary.

Первичный источник обнаружения

Эксплуатация

Public exploits exist for this vulnerability.

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Связанные продукты

Список CVE

  • CVE-2016-0931
    critical
  • CVE-2016-0932
    critical
  • CVE-2016-0933
    critical
  • CVE-2016-0934
    critical
  • CVE-2016-0935
    critical
  • CVE-2016-0936
    critical
  • CVE-2016-0937
    critical
  • CVE-2016-0938
    critical
  • CVE-2016-0939
    critical
  • CVE-2016-0940
    critical
  • CVE-2016-0941
    critical
  • CVE-2016-0942
    critical
  • CVE-2016-0943
    critical
  • CVE-2016-0944
    critical
  • CVE-2016-0945
    critical
  • CVE-2016-0946
    critical
  • CVE-2016-0947
    critical

Смотрите также

Узнай статистику распространения уязвимостей в своем регионе statistics.securelist.com

Нашли неточность в описании этой уязвимости? Дайте нам знать!
Kaspersky IT Security Calculator:
Оцените ваш профиль кибербезопасности
Узнать больше
Встречай новый Kaspersky!
Каждая минута твоей онлайн-жизни заслуживает топовой защиты.
Узнать больше
Do you want to save your changes?
Your message has been sent successfully.