PT-2019-4514 · Adobe · Acrobat+5

Publicado

2019-10-15

·

Atualizado

2021-09-08

·

CVE-2019-8199

CVSS v3.1

9.8

Crítica

VetorAV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Adobe Acrobat versions prior to 2019.012.20040 Adobe Acrobat Reader versions prior to 2019.012.20040 Adobe Acrobat 2017 versions prior to 2017.011.30148 Adobe Acrobat Reader 2017 versions prior to 2017.011.30148 Adobe Acrobat 2015 versions prior to 2015.006.30503 Adobe Acrobat Reader 2015 versions prior to 2015.006.30503
Description The issue is related to an out-of-bounds write vulnerability in memory. This can be exploited by a remote attacker using a specially crafted file, potentially allowing them to execute arbitrary code.
Recommendations For Adobe Acrobat versions prior to 2019.012.20040, update to version 2019.012.20040 or later. For Adobe Acrobat Reader versions prior to 2019.012.20040, update to version 2019.012.20040 or later. For Adobe Acrobat 2017 versions prior to 2017.011.30148, update to version 2017.011.30148 or later. For Adobe Acrobat Reader 2017 versions prior to 2017.011.30148, update to version 2017.011.30148 or later. For Adobe Acrobat 2015 versions prior to 2015.006.30503, update to version 2015.006.30503 or later. For Adobe Acrobat Reader 2015 versions prior to 2015.006.30503, update to version 2015.006.30503 or later.

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

BDU:2020-00508
CVE-2019-8199

Produtos afetados

Acrobat
Acrobat 2015
Acrobat 2017
Acrobat Reader
Acrobat Reader 2015
Acrobat Reader 2017