PT-2018-3730 · Adobe · Acrobat+1
Published
2018-12-11
·
Updated
2019-08-21
·
CVE-2018-16004
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Adobe Acrobat and Reader versions 2019.008.20081 and earlier
Adobe Acrobat and Reader versions 2017.011.30106 and earlier
Adobe Acrobat and Reader versions 2015.006.30457 and earlier
Description
The issue is related to an untrusted pointer dereference vulnerability, which could lead to arbitrary code execution if successfully exploited. This vulnerability is also described as a buffer overflow in memory, allowing a remote attacker to execute arbitrary code. The vulnerability affects the Adobe Acrobat and Reader products, potentially allowing attackers to execute arbitrary code.
Recommendations
For Adobe Acrobat and Reader versions 2019.008.20081 and earlier, update to a version later than 2019.008.20081 to resolve the issue.
For Adobe Acrobat and Reader versions 2017.011.30106 and earlier, update to a version later than 2017.011.30106 to resolve the issue.
For Adobe Acrobat and Reader versions 2015.006.30457 and earlier, update to a version later than 2015.006.30457 to resolve the issue.
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Acrobat
Reader