Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
BID:106172
CVE-2018-15988 | CVE-2018-15999 | CVE-2018-16000 | CVE-2018-16016 | CVE-2018-19702 |Info
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
| Bugtraq ID: | 106172 |
| Class: | Unknown |
| CVE: |
CVE-2018-19702 CVE-2018-16016 CVE-2018-16000 CVE-2018-15999 CVE-2018-15988 |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 11 2018 12:00AM |
| Updated: | Dec 11 2018 12:00AM |
| Credit: | Ke Liu of Tencent's Xuanwu Lab, Du pingxin From NSFOCUS Security Team. |
| Vulnerable: |
Adobe Acrobat Reader DC 2015.8.20082 Adobe Acrobat Reader DC 2015.6.30457 Adobe Acrobat Reader DC 2015.6.30452 Adobe Acrobat Reader DC 2015.6.30448 Adobe Acrobat Reader DC 2015.6.30434 Adobe Acrobat Reader DC 2015.6.30418 Adobe Acrobat Reader DC 2015.6.30417 Adobe Acrobat Reader DC 2015.6.30416 Adobe Acrobat Reader DC 2015.6.30413 Adobe Acrobat Reader DC 2015.6.30394 Adobe Acrobat Reader DC 2015.6.30392 Adobe Acrobat Reader DC 2015.6.30355 Adobe Acrobat Reader DC 2015.6.30352 Adobe Acrobat Reader DC 2015.6.30306 Adobe Acrobat Reader DC 2015.6.30060 Adobe Acrobat Reader DC 2015.009.20069 Adobe Acrobat Reader DC 2015.007.20033 Adobe Acrobat Reader DC 2015.006.30456 Adobe Acrobat Reader DC 2015.006.30094 Adobe Acrobat Reader DC 2015.006.30033 Adobe Acrobat Reader 2017.11.30106 Adobe Acrobat Reader 2017.11.30105 Adobe Acrobat Reader 2017.11.30096 Adobe Acrobat Reader 2017.11.30080 Adobe Acrobat Reader 2017.11.30079 Adobe Acrobat Reader 2017.11.30078 Adobe Acrobat Reader 2017.11.30070 Adobe Acrobat Reader 2017.11.30068 Adobe Acrobat Reader 2017.11.30066 Adobe Acrobat Reader 2017.11.30059 Adobe Acrobat Reader 2017.8.30051 Adobe Acrobat DC 2019.8.20081 Adobe Acrobat DC 2019.8.20080 Adobe Acrobat DC 2019.8.20071 Adobe Acrobat DC 2015.6.30457 Adobe Acrobat DC 2015.6.30456 Adobe Acrobat DC 2015.6.30452 Adobe Acrobat DC 2015.6.30448 Adobe Acrobat DC 2015.6.30434 Adobe Acrobat DC 2015.6.30418 Adobe Acrobat DC 2015.6.30417 Adobe Acrobat DC 2015.6.30416 Adobe Acrobat DC 2015.6.30413 Adobe Acrobat DC 2015.6.30394 Adobe Acrobat DC 2015.6.30392 Adobe Acrobat DC 2015.6.30355 Adobe Acrobat DC 2015.6.30352 Adobe Acrobat DC 2015.6.30306 Adobe Acrobat DC 2015.009.20069 Adobe Acrobat DC 2015.008.20082 Adobe Acrobat DC 2015.007.20033 Adobe Acrobat DC 2015.006.30094 Adobe Acrobat DC 2015.006.30060 Adobe Acrobat DC 2015.006.30033 Adobe Acrobat 2017.11.30106 Adobe Acrobat 2017.11.30105 Adobe Acrobat 2017.11.30102 Adobe Acrobat 2017.11.30099 Adobe Acrobat 2017.11.30096 Adobe Acrobat 2017.11.30080 Adobe Acrobat 2017.11.30079 Adobe Acrobat 2017.11.30078 Adobe Acrobat 2017.11.30070 Adobe Acrobat 2017.11.30068 Adobe Acrobat 2017.11.30066 Adobe Acrobat 2017.11.30059 Adobe Acrobat 2017.8.30051 |
| Not Vulnerable: |
Adobe Acrobat Reader DC 2019.10.20064 Adobe Acrobat Reader DC 2017.11.30110 Adobe Acrobat Reader DC 2015.6.30461 Adobe Acrobat DC 2019.10.20064 Adobe Acrobat DC 2015.6.30461 Adobe Acrobat 2017.11.30110 |
Discussion
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities.
Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.
Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities.
Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.
Exploit / POC
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
References:
References: