Lucene search

HistoryDec 14, 2018 - 12:00 a.m.

Adobe Reader <= 15.006.30457 / 17.011.30106 / 19.008.20081 Multiple Vulnerabilities (APSB18-41)

2018-12-1400:00:00

www.tenable.com

The version of Adobe Reader installed on the remote Windows host is a version prior or equal to 2015.006.30457, 2017.011.30106, or 2019.008.20081. It is, therefore, affected by multiple arbitrary code execution, privilege escalation, and information disclosure vulnerabilities.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(119676);
  script_version("1.8");
  script_cvs_date("Date: 2019/11/01");

  script_cve_id(
    "CVE-2018-12830",
    "CVE-2018-15984",
    "CVE-2018-15985",
    "CVE-2018-15986",
    "CVE-2018-15987",
    "CVE-2018-15988",
    "CVE-2018-15989",
    "CVE-2018-15990",
    "CVE-2018-15991",
    "CVE-2018-15992",
    "CVE-2018-15993",
    "CVE-2018-15994",
    "CVE-2018-15995",
    "CVE-2018-15996",
    "CVE-2018-15997",
    "CVE-2018-15998",
    "CVE-2018-15999",
    "CVE-2018-16000",
    "CVE-2018-16001",
    "CVE-2018-16002",
    "CVE-2018-16003",
    "CVE-2018-16004",
    "CVE-2018-16005",
    "CVE-2018-16006",
    "CVE-2018-16007",
    "CVE-2018-16008",
    "CVE-2018-16009",
    "CVE-2018-16010",
    "CVE-2018-16012",
    "CVE-2018-16013",
    "CVE-2018-16014",
    "CVE-2018-16015",
    "CVE-2018-16016",
    "CVE-2018-16017",
    "CVE-2018-16019",
    "CVE-2018-16020",
    "CVE-2018-16021",
    "CVE-2018-16022",
    "CVE-2018-16023",
    "CVE-2018-16024",
    "CVE-2018-16025",
    "CVE-2018-16026",
    "CVE-2018-16027",
    "CVE-2018-16028",
    "CVE-2018-16029",
    "CVE-2018-16030",
    "CVE-2018-16031",
    "CVE-2018-16032",
    "CVE-2018-16033",
    "CVE-2018-16034",
    "CVE-2018-16035",
    "CVE-2018-16036",
    "CVE-2018-16037",
    "CVE-2018-16038",
    "CVE-2018-16039",
    "CVE-2018-16040",
    "CVE-2018-16041",
    "CVE-2018-16042",
    "CVE-2018-16043",
    "CVE-2018-16044",
    "CVE-2018-16045",
    "CVE-2018-16046",
    "CVE-2018-16047",
    "CVE-2018-19698",
    "CVE-2018-19699",
    "CVE-2018-19700",
    "CVE-2018-19701",
    "CVE-2018-19702",
    "CVE-2018-19703",
    "CVE-2018-19704",
    "CVE-2018-19705",
    "CVE-2018-19706",
    "CVE-2018-19707",
    "CVE-2018-19708",
    "CVE-2018-19709",
    "CVE-2018-19710",
    "CVE-2018-19711",
    "CVE-2018-19712",
    "CVE-2018-19713",
    "CVE-2018-19714",
    "CVE-2018-19715",
    "CVE-2018-19716",
    "CVE-2018-19717",
    "CVE-2018-19719",
    "CVE-2018-19720"
  );

  script_name(english:"Adobe Reader <= 15.006.30457 / 17.011.30106 / 19.008.20081 Multiple Vulnerabilities (APSB18-41)");
  script_summary(english:"Checks the version of Adobe Reader.");

  script_set_attribute(attribute:"synopsis", value:
"The version of Adobe Reader installed on the remote Windows host is
affected by an information disclosure vulnerability.");
  script_set_attribute(attribute:"description", value:
"The version of Adobe Reader installed on the remote Windows host is a
version prior or equal to 2015.006.30457, 2017.011.30106, or 
2019.008.20081. It is, therefore, affected by multiple 
arbitrary code execution, privilege escalation, and information 
disclosure vulnerabilities.

Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number.");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/acrobat/apsb18-41.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Adobe Reader 2015.006.30461 / 2017.011.30110 / 2019.010.20064 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-19715");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/12/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/12/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/12/14");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:acrobat_reader");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("adobe_reader_installed.nasl");
  script_require_keys("SMB/Registry/Enumerated", "installed_sw/Adobe Reader");

  exit(0);
}

include("vcf.inc");
include("vcf_extras.inc");

get_kb_item_or_exit("SMB/Registry/Enumerated");
# Use adobe_reader::get_app_info()
# to use DLL version if > app_info.version
app_info = vcf::adobe_reader::get_app_info();

# vcf::adobe_reader::check_version_and_report will
# properly separate tracks when checking constraints.
# x.y.20zzz = DC Classic
# x.y.30zzz = DC Continuous
constraints = [
  { "min_version" : "15.6", "max_version":"15.6.30457", "fixed_version" : "15.6.30461" },
  { "min_version" : "17.8", "max_version":"17.11.30106", "fixed_version" : "17.11.30110" },
  { "min_version" : "15.7", "max_version":"19.8.20081", "fixed_version" : "19.10.20064" }
];
# using adobe_reader namespace check_version_and_report to properly detect Continuous vs Classic, 
# and limit ver segments to 3 (18.x.y vs 18.x.y.12345) with max_segs:3
vcf::adobe_reader::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE, max_segs:3);

VendorProductVersionCPE
adobeacrobat_readercpe:/a:adobe:acrobat_reader

Vendor	Product	Version	CPE
adobe	acrobat_reader		cpe:/a:adobe:acrobat_reader

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12830

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15984

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15985

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15986

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15987

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15988

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15989

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15990

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15991

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15992

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15993

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15994

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15995

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15996

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15997

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15998

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-15999

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16000

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16001

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16002

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16003

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16004

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16005

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16006

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16007

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16008

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16009

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16010

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16012

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16013

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16014

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16015

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16016

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16017

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16019

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16020

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16021

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16022

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16023

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16024

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16025

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16026

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16027

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16028

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16029

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16030

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16031

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16032

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16033

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16034

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16035

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16036

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16037

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16038

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16039

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16040

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16041

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16042

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16043

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16044

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16045

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16046

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16047

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19698

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19699

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19700

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19701

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19702

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19703

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19704

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19705

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19706

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19707

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19708

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19709

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19710

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19711

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19712

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19713

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19714

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19715

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19716

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19717

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19719

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19720

helpx.adobe.com/security/products/acrobat/apsb18-41.html

JSON

Related for ADOBE_READER_APSB18-41.NASL