Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
BID:106978
Info
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
| Bugtraq ID: | 106978 |
| Class: | Unknown |
| CVE: |
CVE-2019-7019 CVE-2019-7027 CVE-2019-7037 CVE-2019-7039 CVE-2019-7052 CVE-2019-7060 CVE-2019-7079 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 12 2019 12:00AM |
| Updated: | Feb 12 2019 12:00AM |
| Credit: | Linan Hao of Qihoo 360 Vulcan Team and Zhenjie Jia of Qihoo 360 Vulcan Team, Zhibin Zhang of Palo Alto Networks , Ke Liu of Tencent Security Xuanwu Lab, Aleksandar Nikolic of Cisco Talos, Hui Gao of Palo Alto Networks, Zhanglin He of Palo Alto Networks, Zh |
| Vulnerable: |
Adobe Acrobat Reader DC 2019.10.20069 Adobe Acrobat Reader DC 2019.10.20064 Adobe Acrobat Reader DC 2015.6.30464 Adobe Acrobat Reader DC 2015.6.30461 Adobe Acrobat Reader DC 2015.6.30457 Adobe Acrobat Reader DC 2015.6.30452 Adobe Acrobat Reader DC 2015.6.30448 Adobe Acrobat Reader DC 2015.6.30434 Adobe Acrobat Reader DC 2015.6.30418 Adobe Acrobat Reader DC 2015.6.30417 Adobe Acrobat Reader DC 2015.6.30416 Adobe Acrobat Reader DC 2015.6.30413 Adobe Acrobat Reader DC 2015.6.30394 Adobe Acrobat Reader DC 2015.6.30392 Adobe Acrobat Reader DC 2015.6.30355 Adobe Acrobat Reader DC 2015.6.30352 Adobe Acrobat Reader DC 2015.6.30306 Adobe Acrobat Reader DC 2015.6.30060 Adobe Acrobat Reader DC 2015.006.30456 Adobe Acrobat Reader DC 2015.006.30094 Adobe Acrobat Reader DC 2015.006.30033 Adobe Acrobat Reader 2017.11.30113 Adobe Acrobat Reader 2017.11.30110 Adobe Acrobat Reader 2017.11.30106 Adobe Acrobat Reader 2017.11.30105 Adobe Acrobat Reader 2017.11.30096 Adobe Acrobat Reader 2017.11.30080 Adobe Acrobat Reader 2017.11.30079 Adobe Acrobat Reader 2017.11.30078 Adobe Acrobat Reader 2017.11.30070 Adobe Acrobat Reader 2017.11.30068 Adobe Acrobat Reader 2017.11.30066 Adobe Acrobat Reader 2017.11.30059 Adobe Acrobat DC 2019.10.20069 Adobe Acrobat DC 2019.10.20064 Adobe Acrobat DC 2015.6.30464 Adobe Acrobat DC 2015.6.30461 Adobe Acrobat DC 2015.6.30457 Adobe Acrobat DC 2015.6.30456 Adobe Acrobat DC 2015.6.30452 Adobe Acrobat DC 2015.6.30448 Adobe Acrobat DC 2015.6.30434 Adobe Acrobat DC 2015.6.30418 Adobe Acrobat DC 2015.6.30417 Adobe Acrobat DC 2015.6.30416 Adobe Acrobat DC 2015.6.30413 Adobe Acrobat DC 2015.6.30394 Adobe Acrobat DC 2015.6.30392 Adobe Acrobat DC 2015.6.30355 Adobe Acrobat DC 2015.6.30352 Adobe Acrobat DC 2015.6.30306 Adobe Acrobat DC 2015.006.30094 Adobe Acrobat DC 2015.006.30060 Adobe Acrobat 2017.11.30113 Adobe Acrobat 2017.11.30110 Adobe Acrobat 2017.11.30106 Adobe Acrobat 2017.11.30105 Adobe Acrobat 2017.11.30102 Adobe Acrobat 2017.11.30099 Adobe Acrobat 2017.11.30096 Adobe Acrobat 2017.11.30080 Adobe Acrobat 2017.11.30079 Adobe Acrobat 2017.11.30078 Adobe Acrobat 2017.11.30070 Adobe Acrobat 2017.11.30068 Adobe Acrobat 2017.11.30066 Adobe Acrobat 2017.11.30059 |
| Not Vulnerable: |
Adobe Acrobat Reader DC 2019.10.20091 Adobe Acrobat Reader DC 2017.11.30120 Adobe Acrobat Reader DC 2015.6.30475 Adobe Acrobat DC 2019.10.20091 Adobe Acrobat DC 2015.6.30475 Adobe Acrobat 2017.11.30120 |
Discussion
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities.
Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.
Adobe Acrobat and Reader are prone to multiple arbitrary code-execution vulnerabilities.
Successfully exploiting these issues allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions.
Exploit / POC
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Adobe Acrobat and Reader Out-Of-Bounds Write Multiple Arbitrary Code Execution Vulnerabilities
References:
References: