| VID |
50111 |
| Severity |
40 |
| Port |
139,445 |
| Protocol |
TCP |
| Class |
SMB |
| Detailed Description |
The version of Adobe Acrobat installed on the remote Windows host is prior to 11.0.19. It is, therefore, affected by multiple vulnerabilities :
- Multiple memory corruption issues exist due to improper validation of unspecified input. An unauthenticated, remote attacker can exploit these to execute arbitrary code. (CVE-2017-2939, CVE-2017-2940, CVE-2017-2941,
CVE-2017-2943, CVE-2017-2944, CVE-2017-2953, CVE-2017-2954)
- Multiple heap buffer overflow conditions exist due to improper validation of unspecified input. An unauthenticated, remote attacker can exploit these to execute arbitrary code. (CVE-2017-2942, CVE-2017-2945, CVE-2017-2959)
- A heap buffer overflow condition exists when handling JPEG2000 images due to improper validation of unspecified input. An unauthenticated, remote attacker can exploit this to execute arbitrary code. (CVE-2017-2946)
- An unspecified security bypass vulnerability exists that allows an unauthenticated, remote attacker to have an unspecified impact. (CVE-2017-2947)
- Multiple overflow conditions exist due to improper validation of unspecified input. An unauthenticated, remote attacker can exploit these to execute arbitrary code. (CVE-2017-2948, CVE-2017-2952)
- A heap buffer overflow condition exists when handling the XSLT element-available() function that allows an unauthenticated, remote attacker to execute arbitrary code. (CVE-2017-2949)
- Multiple use-after-free memory errors exist when handling XFA subform layouts, hyphenation objects, field font sizes, and template objects. An unauthenticated, remote attacker can exploit these to execute arbitrary code.
(CVE-2017-2950, CVE-2017-2951, CVE-2017-2961, CVE-2017-2967)
- Multiple use-after-free memory errors exist that allow an unauthenticated, remote attacker to execute arbitrary code. (CVE-2017-2955, CVE-2017-2956, CVE-2017-2957, CVE-2017-2958)
- Multiple memory corruption issues exist when handling JPEG and TIFF files due to improper validation of unspecified input. An unauthenticated, remote attacker can exploit these to execute arbitrary code. (CVE-2017-2960, CVE-2017-2963, CVE-2017-2964, CVE-2017-2965)
- A type confusion error exists when handling the XSLT lang() function that allows an unauthenticated, remote attacker to execute arbitrary code. (CVE-2017-2962)
- A heap buffer overflow condition exists in the ImageConversion component when handling TIFF images() due to improper validation of unspecified input. An unauthenticated, remote attacker can exploit this to execute arbitrary code. (CVE-2017-2966)
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these conditions will result in the check not being performed and a False Negative for all vulnerable hosts.
* References:
https://helpx.adobe.com/security/products/acrobat/apsb17-01.html
* Platforms Affected:
Adobe Acrobat versions prior to 11.0.19
Microsoft Windows Any version
Linux Any version |
| Recommendation |
Upgrade to the latest version of Adobe Acrobat (11.0.19 or later), as described in the Adobe Security bulletin at https://helpx.adobe.com/security/products/acrobat/apsb17-01.html |
| Related URL |
CVE-2017-3036,CVE-2017-2939,CVE-2017-2940,CVE-2017-2941,CVE-2017-2942,CVE-2017-2943,CVE-2017-2944,CVE-2017-2945,CVE-2017-2946,CVE-2017-2947 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
