PT-2015-6776 · Adobe · Reader+3

Publicado

2015-07-14

Atualizado

2021-09-08

CVE-2015-5091

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Adobe Reader and Acrobat versions 10.x through 10.1.14 Adobe Reader and Acrobat versions 11.x through 11.0.11 Acrobat and Acrobat Reader DC Classic versions prior to 2015.006.30060 Acrobat and Acrobat Reader DC Continuous versions prior to 2015.008.20082

Description The issue allows attackers to cause a denial of service via invalid data, potentially leading to a denial-of-service condition due to a validation bypass vulnerability.

Recommendations For Adobe Reader and Acrobat versions 10.x through 10.1.14, update to version 10.1.15 or later. For Adobe Reader and Acrobat versions 11.x through 11.0.11, update to version 11.0.12 or later. For Acrobat and Acrobat Reader DC Classic versions prior to 2015.006.30060, update to version 2015.006.30060 or later. For Acrobat and Acrobat Reader DC Continuous versions prior to 2015.008.20082, update to version 2015.008.20082 or later.

Correção

DoS

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2015-5091

ZDI-15-315

Produtos afetados

Acrobat

Acrobat Reader Dc Classic

Acrobat Reader Dc Continuous

Reader

PT-2015-6776 · Adobe · Reader+3

CVE-2015-5091

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 7