Adobe Acrobat and Reader APSB18-21 Multiple Heap Buffer Overflow Vulnerabilities

Bugtraq ID:	104700
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Jul 10 2018 12:00AM
Updated:	Jul 10 2018 12:00AM
Credit:	Ke Liu of Tencent's Xuanwu LAB working via Trend Micro's Zero Day Initiative, Kdot via Trend Micro's Zero Day Initiative, WillJ of Tencent PC Manager via Trend Micro's Zero Day Initiative, Lin Wang of Beihang University, Ron Waisberg working with Trend Mic
Vulnerable:
Not Vulnerable:

Adobe Acrobat and Reader APSB18-21 Multiple Heap Buffer Overflow Vulnerabilities

Adobe Acrobat and Reader are prone to multiple heap-based buffer-overflow vulnerabilities.

Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.

Adobe Acrobat and Reader APSB18-21 Multiple Heap Buffer Overflow Vulnerabilities

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Adobe Acrobat and Reader APSB18-21 Multiple Heap Buffer Overflow Vulnerabilities

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Adobe Acrobat and Reader APSB18-21 Multiple Heap Buffer Overflow Vulnerabilities

References:

• Adobe Homepage (Adobe)
  
• Security Bulletin for Adobe Acrobat and Reader | APSB18-21 (Adobe)