KLA11390
Multiple vulnerabilities in Adobe Acrobat and Reader
Обновлено: 05/03/2019
Дата обнаружения
11/12/2018
Уровень угрозы
Critical
Описание

Multiple serious vulnerabilities were found in  Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges and obtain sensitive information.

Below is a complete list of vulnerabilities:

  1. Multiple buffer errors vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  2. Multiple untrusted pointer dereference vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  3. Multiple security bypass vulnerabilities in Adobe Acrobat and Reader can be exploited to gain privileges;
  4. Multiple use-after-free vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  5. Multiple out-of-bounds write vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  6. Multiple heap overflow vulnerabilities in Adobe Acrobat and Reader can be exploited to execute arbitrary code;
  7. Multiple out-of-bounds read vulnerabilities in Adobe Acrobat and Reader can be exploited to obtain sensitive information;
  8. Multiple integer Overflow vulnerabilities in Adobe Acrobat and Reader can be exploited to obtain sensitive information;
  9. Multiple security bypass vulnerabilities in Adobe Acrobat and Reader can be exploited to obtain sensitive information;
Пораженные продукты

Adobe Acrobat DC Continuous earlier than 2019.010.20064
Adobe Acrobat Reader DC Continuous earlier than 2019.010.20064
Adobe Acrobat 2017 (Classic Track) earlier than 2017.011.30110
Adobe Acrobat Reader 2017 (Classic Track) earlier than 2017.011.30110
Adobe Acrobat DC 2015(Classic Track) earlier than 2015.006.30461
Adobe Acrobat Reader DC 2015 (Classic Track) earlier than 2015.006.30461

Решение

Update to the latest version
Download Adobe Acrobat Reader DC

Первичный источник обнаружения
Security Bulletin for Adobe Acrobat and Reader | APSB18-41
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

PE 
[?]
Связанные продукты
Adobe Acrobat Reader DC Continuous
Adobe Acrobat Reader DC Classic
Adobe Acrobat DC Continuous
Adobe Acrobat DC Classic
Adobe Acrobat Reader 2017
Adobe Acrobat 2017
CVE-IDS

CVE-2018-15998
CVE-2018-15987
CVE-2018-16004
CVE-2018-19720
CVE-2018-16045
CVE-2018-16044
CVE-2018-16018
CVE-2018-19715
CVE-2018-19713
CVE-2018-19708
CVE-2018-19707
CVE-2018-19700
CVE-2018-19698
CVE-2018-16046
CVE-2018-16040
CVE-2018-16039
CVE-2018-16037
CVE-2018-16036
CVE-2018-16029
CVE-2018-16027
CVE-2018-16026
CVE-2018-16025
CVE-2018-16014
CVE-2018-16008
CVE-2018-16003
CVE-2018-15994
CVE-2018-15993
CVE-2018-15992
CVE-2018-15991
CVE-2018-15990
CVE-2018-19702
CVE-2018-16016
CVE-2018-16000
CVE-2018-15999
CVE-2018-15988
CVE-2018-19716
CVE-2018-16021
CVE-2018-12830
CVE-2018-19717
CVE-2018-19714
CVE-2018-19712
CVE-2018-19711
CVE-2018-19710
CVE-2018-19709
CVE-2018-19706
CVE-2018-19705
CVE-2018-19704
CVE-2018-19703
CVE-2018-19701
CVE-2018-19699
CVE-2018-16047
CVE-2018-16043
CVE-2018-16041
CVE-2018-16038
CVE-2018-16035
CVE-2018-16034
CVE-2018-16033
CVE-2018-16032
CVE-2018-16031
CVE-2018-16030
CVE-2018-16028
CVE-2018-16024
CVE-2018-16023
CVE-2018-16022
CVE-2018-16020
CVE-2018-16019
CVE-2018-16017
CVE-2018-16015
CVE-2018-16013
CVE-2018-16012
CVE-2018-16010
CVE-2018-16006
CVE-2018-16005
CVE-2018-16002
CVE-2018-16001
CVE-2018-15997
CVE-2018-15996
CVE-2018-15989
CVE-2018-15985
CVE-2018-15984
CVE-2018-19719
CVE-2018-16009
CVE-2018-16007
CVE-2018-15995
CVE-2018-15986
CVE-2018-16042