Adobe Acrobat and Reader APSB18-29 Multiple Arbitrary Code Execution Vulnerabilities
BID:105069
CVE-2018-12799 | CVE-2018-12808 |Info
Adobe Acrobat and Reader APSB18-29 Multiple Arbitrary Code Execution Vulnerabilities
| Bugtraq ID: | 105069 |
| Class: | Unknown |
| CVE: |
CVE-2018-12808 CVE-2018-12799 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 14 2018 12:00AM |
| Updated: | Aug 14 2018 12:00AM |
| Credit: | Abdul Aziz Hariri reported via Trend Micro's Zero Day Initiative and Cybellum Technologies Ltd. |
| Vulnerable: |
Adobe Acrobat Reader DC 2018.11.20055 Adobe Acrobat Reader DC 2018.11.20040 Adobe Acrobat Reader DC 2018.11.20038 Adobe Acrobat Reader DC 2018.11.20035 Adobe Acrobat Reader DC 2018.9.20050 Adobe Acrobat Reader DC 2018.9.20044 Adobe Acrobat Reader DC 2015.6.30434 Adobe Acrobat Reader DC 2015.6.30418 Adobe Acrobat Reader DC 2015.6.30417 Adobe Acrobat Reader DC 2015.6.30416 Adobe Acrobat Reader DC 2015.6.30413 Adobe Acrobat Reader DC 2015.6.30394 Adobe Acrobat Reader DC 2015.6.30392 Adobe Acrobat Reader DC 2015.6.30355 Adobe Acrobat Reader DC 2015.6.30352 Adobe Acrobat Reader DC 2015.6.30306 Adobe Acrobat Reader DC 2015.6.30060 Adobe Acrobat Reader DC 2015.006.30094 Adobe Acrobat Reader DC 2015.006.30033 Adobe Acrobat Reader 2017.11.30096 Adobe Acrobat Reader 2017.11.30080 Adobe Acrobat Reader 2017.11.30079 Adobe Acrobat Reader 2017.11.30078 Adobe Acrobat Reader 2017.11.30070 Adobe Acrobat Reader 2017.11.30068 Adobe Acrobat Reader 2017.11.30066 Adobe Acrobat Reader 2017.11.30059 Adobe Acrobat Reader 2017.8.30051 Adobe Acrobat DC 2018.11.20055 Adobe Acrobat DC 2018.11.20040 Adobe Acrobat DC 2018.11.20038 Adobe Acrobat DC 2018.11.20035 Adobe Acrobat DC 2018.9.20050 Adobe Acrobat DC 2018.9.20044 Adobe Acrobat DC 2015.6.30434 Adobe Acrobat DC 2015.6.30418 Adobe Acrobat DC 2015.6.30417 Adobe Acrobat DC 2015.6.30416 Adobe Acrobat DC 2015.6.30413 Adobe Acrobat DC 2015.6.30394 Adobe Acrobat DC 2015.6.30392 Adobe Acrobat DC 2015.6.30355 Adobe Acrobat DC 2015.6.30352 Adobe Acrobat DC 2015.6.30306 Adobe Acrobat DC 2015.006.30094 Adobe Acrobat DC 2015.006.30060 Adobe Acrobat DC 2015.006.30033 Adobe Acrobat 2017.11.30096 Adobe Acrobat 2017.11.30080 Adobe Acrobat 2017.11.30079 Adobe Acrobat 2017.11.30078 Adobe Acrobat 2017.11.30070 Adobe Acrobat 2017.11.30068 Adobe Acrobat 2017.11.30066 Adobe Acrobat 2017.11.30059 Adobe Acrobat 2017.8.30051 |
| Not Vulnerable: | |
Discussion
Adobe Acrobat and Reader APSB18-29 Multiple Arbitrary Code Execution Vulnerabilities
Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities.
Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the current user. Failed exploits will result in denial-of-service conditions.
The following products and versions are vulnerable:
Adobe Acrobat DC 2018.011.20055 and prior
Adobe Acrobat Reader DC 2018.011.20055 and prior
Adobe Acrobat 2017.011.30096 and prior
Adobe Acrobat Reader 2017.011.30096 and prior
Adobe Acrobat DC 2015.006.30434 and prior
Adobe Acrobat Reader DC 2015.006.30434 and prior
Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities.
Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the current user. Failed exploits will result in denial-of-service conditions.
The following products and versions are vulnerable:
Adobe Acrobat DC 2018.011.20055 and prior
Adobe Acrobat Reader DC 2018.011.20055 and prior
Adobe Acrobat 2017.011.30096 and prior
Adobe Acrobat Reader 2017.011.30096 and prior
Adobe Acrobat DC 2015.006.30434 and prior
Adobe Acrobat Reader DC 2015.006.30434 and prior
Exploit / POC
Adobe Acrobat and Reader APSB18-29 Multiple Arbitrary Code Execution Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Adobe Acrobat and Reader APSB18-29 Multiple Arbitrary Code Execution Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Adobe Acrobat and Reader APSB18-29 Multiple Arbitrary Code Execution Vulnerabilities
References:
References: