Lucene search

Kaspersky LabKLA11324

HistoryOct 01, 2018 - 12:00 a.m.

KLA11324 Multiple vulnerabilities in Adobe Acrobat and Reader

2018-10-0100:00:00

Kaspersky Lab

threats.kaspersky.com

510

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

9 High

AI Score

Confidence

High

0.296 Low

EPSS

Percentile

97.0%

JSON

Multiple serious vulnerabilities were found in Adobe Acrobat and Reader. Malicious users can exploit these vulnerabilities to execute arbitrary code, obtain sensitive information and gain privileges. Below is a complete list of vulnerabilities:

Multiple out-of-bounds write vulnerabilities can be exploited remotely to execute arbitrary code;
Multiple out-of-bounds read vulnerabilities can be exploited remotely to obtain sensitive information;
Multiple heap overflow vulnerabilities can be exploited remotely to execute arbitrary code;
Multiple use-after-free vulnerabilities can be exploited remotely to execute arbitrary code;
Multiple type confusion vulnerabilities can be exploited remotely to execute arbitrary code;
A stack overflow vulnerability can be exploited remotely to obtain sensitive information;
A double free vulnerability can be exploited remotely to execute arbitrary code;
Multiple integer overflow vulnerabilities can be exploited remotely to obtain sensitive information;
Multiple buffer errors vulnerabilities can be exploited remotely to execute arbitrary code;
Multiple untrusted pointer dereference vulnerabilities can be exploited remotely to execute arbitrary code;
A security bypass vulnerability can be exploited remotely to gain privileges.

Original advisories

Security bulletin for Adobe Acrobat and Reader | APSB18-30

Exploitation

Malware exists for this vulnerability. Usually such malware is classified as Exploit. More details.

Related products

Adobe-Acrobat

Adobe-Acrobat-Reader-DC-Continuous

Adobe-Acrobat-Reader-DC-Classic

Adobe-Acrobat-DC-Continuous

Adobe-Acrobat-DC-Classic

Adobe-Acrobat-Reader-2017

Adobe-Acrobat-2017

CVE list

CVE-2018-15955 critical

CVE-2018-15954 critical

CVE-2018-15952 critical

CVE-2018-15945 critical

CVE-2018-15944 critical

CVE-2018-15941 critical

CVE-2018-15940 critical

CVE-2018-15939 critical

CVE-2018-15938 critical

CVE-2018-15936 critical

CVE-2018-15935 critical

CVE-2018-15934 critical

CVE-2018-15933 critical

CVE-2018-15929 critical

CVE-2018-15928 critical

CVE-2018-12868 critical

CVE-2018-12865 critical

CVE-2018-12864 critical

CVE-2018-12862 critical

CVE-2018-12861 critical

CVE-2018-12860 critical

CVE-2018-12759 critical

CVE-2018-15956 warning

CVE-2018-15953 warning

CVE-2018-15950 warning

CVE-2018-15949 warning

CVE-2018-15948 warning

CVE-2018-15947 warning

CVE-2018-15946 warning

CVE-2018-15943 warning

CVE-2018-15942 warning

CVE-2018-15932 warning

CVE-2018-15927 warning

CVE-2018-15926 warning

CVE-2018-15925 warning

CVE-2018-15923 warning

CVE-2018-15922 warning

CVE-2018-12880 warning

CVE-2018-12879 warning

CVE-2018-12878 warning

CVE-2018-12875 warning

CVE-2018-12874 warning

CVE-2018-12873 warning

CVE-2018-12872 warning

CVE-2018-12871 warning

CVE-2018-12870 warning

CVE-2018-12869 warning

CVE-2018-12867 warning

CVE-2018-12866 warning

CVE-2018-12859 warning

CVE-2018-12857 warning

CVE-2018-12856 warning

CVE-2018-12845 warning

CVE-2018-12844 warning

CVE-2018-12843 warning

CVE-2018-12839 warning

CVE-2018-12834 warning

CVE-2018-15968 warning

CVE-2018-12851 critical

CVE-2018-12847 high

CVE-2018-12846 critical

CVE-2018-12837 critical

CVE-2018-12836 critical

CVE-2018-12833 critical

CVE-2018-12832 critical

CVE-2018-15924 critical

CVE-2018-15920 critical

CVE-2018-12877 critical

CVE-2018-12863 critical

CVE-2018-12852 critical

CVE-2018-12831 critical

CVE-2018-12769 critical

CVE-2018-12876 critical

CVE-2018-12858 critical

CVE-2018-12835 critical

CVE-2018-12838 warning

CVE-2018-12841 critical

CVE-2018-12881 warning

CVE-2018-12842 warning

CVE-2018-15951 critical

CVE-2018-12855 critical

CVE-2018-12853 critical

CVE-2018-15937 critical

CVE-2018-15931 critical

CVE-2018-15930 critical

CVE-2018-15966 critical

CVE-2018-15977 warning

CVE-2018-19722 warning

CVE-2018-15921 warning

Solution

Update to the latest version

Download Adobe Acrobat Reader DC

Impacts

Arbitrary code execution. Exploitation of vulnerabilities with this impact can lead to executing by abuser any code or commands at vulnerable machine or process.

Obtain sensitive information. Exploitation of vulnerabilities with this impact can lead to capturing by abuser information, critical for user or system.

Denial of service. Exploitation of vulnerabilities with this impact can lead to loss of system availability or critical functional fault.

Security bypass. Exploitation of vulnerabilities with this impact can lead to performing actions restricted by current security settings.

Privilege escalation. Exploitation of vulnerabilities with this impact can lead to performing by abuser actions, which are normally disallowed for current role.

Affected Products

Adobe Acrobat DC Continuous earlier than 2019.008.20071Adobe Acrobat Reader DC Continuous earlier than 2019.008.20071Adobe Acrobat 2017 (Classic Track) earlier than 2017.011.30105Adobe Acrobat Reader 2017 (Classic Track) earlier than 2017.011.30105Adobe Acrobat DC 2015(Classic Track) earlier than 2015.006.30456Adobe Acrobat Reader DC 2015 (Classic Track) earlier than 2015.006.30456