PT-2018-13347 · Adobe · Acrobat+1

Published

2018-12-11

Updated

2019-08-21

CVE-2018-16008

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Adobe Acrobat and Reader versions 2019.008.20081 and earlier Adobe Acrobat and Reader versions 2017.011.30106 and earlier Adobe Acrobat and Reader versions 2015.006.30457 and earlier

Description A use-after-free issue allows attackers to execute arbitrary code. Successful exploitation could lead to arbitrary code execution.

Recommendations For Adobe Acrobat and Reader versions 2019.008.20081 and earlier, update to a version later than 2019.008.20081. For Adobe Acrobat and Reader versions 2017.011.30106 and earlier, update to a version later than 2017.011.30106. For Adobe Acrobat and Reader versions 2015.006.30457 and earlier, update to a version later than 2015.006.30457.

Fix

Use After Free

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-416

Related Identifiers

CVE-2018-16008

ZDI-18-1385

ZDI-18-1414

ZDI-18-1416

Affected Products

Acrobat

Reader

PT-2018-13347 · Adobe · Acrobat+1

CVE-2018-16008

Weakness Enumeration

Related Identifiers

Affected Products

References · 8