KLA11708 Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader

🗓️ 17 Mar 2020 00:00:00Reported by Kaspersky LabType

kaspersky🔗 threats.kaspersky.com👁 64 Views

Multiple vulnerabilities in Adobe Acrobat and Adobe Acrobat Reader allowing for sensitive information theft, arbitrary code execution, and privilege escalation. Affected products include Acrobat DC, Acrobat Reader DC Continuous, Acrobat 2017 Classic, Acrobat Reader 2017 Classic, Acrobat 2015 Classic, and Acrobat Reader 2015 Classic. Update to the latest version.

Reporter	Title	Published	Views	Family All 136
Tenable Nessus	Adobe Acrobat < 2015.006.30518 / 2017.011.30166 / 2020.006.20042 Multiple Vulnerabilities (APSB20-13)	19 Mar 202000:00	–	nessus
Tenable Nessus	Adobe Reader < 2015.006.30518 / 2017.011.30166 / 2020.006.20042 Multiple Vulnerabilities (APSB20-13)	19 Mar 202000:00	–	nessus
Tenable Nessus	Adobe Acrobat < 2015.006.30518 / 2017.011.30166 / 2020.006.20042 Multiple Vulnerabilities (APSB20-13) (macOS)	19 Mar 202000:00	–	nessus
Tenable Nessus	Adobe Reader < 2015.006.30518 / 2017.011.30166 / 2020.006.20042 Multiple Vulnerabilities (APSB20-13) (macOS)	19 Mar 202000:00	–	nessus
BDU FSTEC	The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.	26 Mar 202000:00	–	bdu_fstec
BDU FSTEC	The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.	26 Mar 202000:00	–	bdu_fstec
BDU FSTEC	The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to writing beyond the buffer in memory. This allows attackers to execute arbitrary code.	26 Mar 202000:00	–	bdu_fstec
BDU FSTEC	The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.	26 Mar 202000:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are caused by buffer overflow in the stack. This allows attackers to execute arbitrary code.	26 Mar 202000:00	–	bdu_fstec
BDU FSTEC	The vulnerabilities of PDF viewer programs such as Adobe Reader and Document Cloud, as well as PDF editing programs like Adobe Acrobat Document Cloud and Adobe Acrobat, are related to memory usage after it is freed. This allows attackers to execute arbitrary code.	26 Mar 202000:00	–	bdu_fstec

Source	Link
helpx	www.helpx.adobe.com/security/products/acrobat/apsb20-13.html
threats	www.threats.kaspersky.com/en/class/Exploit/
threats	www.threats.kaspersky.com/en/product/Adobe-Acrobat-Reader-DC-Continuous/
threats	www.threats.kaspersky.com/en/product/Adobe-Acrobat-Reader-DC-Classic/
threats	www.threats.kaspersky.com/en/product/Adobe-Acrobat-DC-Continuous/
threats	www.threats.kaspersky.com/en/product/Adobe-Acrobat-DC-Classic/
threats	www.threats.kaspersky.com/en/product/Adobe-Acrobat-Reader-2017/
threats	www.threats.kaspersky.com/en/product/Adobe-Acrobat-2017/
statistics	www.statistics.securelist.com/

22 Jan 2024 00:00Current

10High risk

Vulners AI Score10

CVSS 210

CVSS 3.19.8

EPSS0.07581