KLA11531
Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader

Обновлено: 03/06/2020
Дата обнаружения
14/08/2019
Уровень угрозы
High
Описание

Multiple vulnerabilities were found in Adobe Acrobat and Adobe Acrobat Reader. Malicious users can exploit these vulnerabilities to obtain sensitive information and execute arbitrary code, bypass security restrictions.

Below is a complete list of vulnerabilities:

  1. Multiple out-of-bound read vulnerabilities can be exploited to obtain sensitive information;
  2. Multiple out-of-bounds write vulnerabilities can be exploited to execute arbitrary code;
  3. A command injection vulnerability can be exploited to execute arbitrary code;
  4. Multiple use-after-free vulnerabilities can be exploited to execute arbitrary code;
  5. Multiple heap overflow vulnerabilities can be exploited to execute arbitrary code;
  6. A buffer error vulnerability can be exploited to execute arbitrary code;
  7. A double free vulnerability can be exploited to execute arbitrary code;
  8. Multiple integer overflow vulnerabilities can be exploited to obtain sensitive information;
  9. An internal IP disclosure vulnerability can be exploited to obtain sensitive information;
  10. A type confusion vulnerability can be exploited to execute arbitrary code;
  11. Multiple untrusted pointer dereference vulnerabilities can be exploited to execute arbitrary code;
  12. Insufficiently Robust Encryption can be exploited to bypass security restrictions;
Пораженные продукты

Adobe Acrobat DC (Continuous track) earlier than 2019.012.20036
Adobe Acrobat Reader DC (Continuous track) earlier than 2019.012.20036
Adobe Acrobat 2017 (Classic 2017 track) earlier than 2017.011.30144
Adobe Acrobat Reader 2017 (Classic 2017 track) earlier than 2017.011.30144
Adobe Acrobat DC (Classic 2015 track) earlier than 2015.006.30499
Adobe Acrobat Reader 2017 (Classic 2015 track) earlier than 2015.006.30499

Решение

Update to the latest version
Download Adobe Acrobat Reader DC

Первичный источник обнаружения
APSB19-41
Оказываемое влияние
?
ACE 
[?]

OSI 
[?]

SB 
[?]
Связанные продукты
Adobe Acrobat Reader DC Continuous
Adobe Acrobat Reader DC Classic
Adobe Acrobat DC Continuous
Adobe Acrobat DC Classic
Adobe Acrobat Reader 2017
Adobe Acrobat 2017
CVE-IDS
CVE-2019-80775.0Critical
CVE-2019-80945.0Critical
CVE-2019-80955.0Critical
CVE-2019-80965.0Critical
CVE-2019-81025.0Critical
CVE-2019-81035.0Critical
CVE-2019-81045.0Critical
CVE-2019-81055.0Critical
CVE-2019-81065.0Critical
CVE-2019-80025.0Critical
CVE-2019-80045.0Critical
CVE-2019-80055.0Critical
CVE-2019-80075.0Critical
CVE-2019-80105.0Critical
CVE-2019-80115.0Critical
CVE-2019-80125.0Critical
CVE-2019-80185.0Critical
CVE-2019-80205.0Critical
CVE-2019-80215.0Critical
CVE-2019-80325.0Critical
CVE-2019-80354.3Warning
CVE-2019-80374.3Warning
CVE-2019-80404.3Warning
CVE-2019-80435.0Critical
CVE-2019-80524.3Warning
CVE-2019-80987.5Critical
CVE-2019-81007.5Critical
CVE-2019-79657.5Critical
CVE-2019-80086.8High
CVE-2019-80097.5Critical
CVE-2019-80167.5Critical
CVE-2019-80227.5Critical
CVE-2019-80237.5Critical
CVE-2019-80276.8High
CVE-2019-80037.5Critical
CVE-2019-80136.8High
CVE-2019-80247.5Critical
CVE-2019-80257.5Critical
CVE-2019-80267.5Critical
CVE-2019-80287.5Critical
CVE-2019-80297.5Critical
CVE-2019-80307.5Critical
CVE-2019-80317.5Critical
CVE-2019-80336.8High
CVE-2019-80346.8High
CVE-2019-80367.5Critical
CVE-2019-80386.8High
CVE-2019-80396.8High
CVE-2019-80477.5Critical
CVE-2019-80514.3Warning
CVE-2019-80534.3Warning
CVE-2019-80544.3Warning
CVE-2019-80557.5Critical
CVE-2019-80564.3Warning
CVE-2019-80576.8High
CVE-2019-80584.3Warning
CVE-2019-80594.3Warning
CVE-2019-80617.5Critical
CVE-2019-80146.8High
CVE-2019-80157.5Critical
CVE-2019-80417.5Critical
CVE-2019-80427.5Critical
CVE-2019-80467.5Critical
CVE-2019-80507.5Critical
CVE-2019-80487.5Critical
CVE-2019-80447.5Critical
CVE-2019-80995.0Critical
CVE-2019-81015.0Critical
CVE-2019-80975.0Critical
CVE-2019-80196.8High
CVE-2019-80067.5Critical
CVE-2019-80177.5Critical
CVE-2019-80457.5Critical
CVE-2019-80666.8High
CVE-2019-82496.8High
CVE-2019-82506.8High
CVE-2019-82514.3Warning
CVE-2019-82524.3Warning
CVE-2019-82577.5Critical
Узнай статистику распространения уязвимостей в твоем регионе