VID |
50301 |
Severity |
30 |
Port |
139,445 |
Protocol |
TCP |
Class |
SMB |
Detailed Description |
The version of Adobe Reader installed on the remote Windows host is a version prior or equal to 2015.006.30518. It is, therefore, affected by multiple vulnerabilities.
- Null Pointer - Heap Overflow - Race Condition - Out-of-bounds write - Security bypass - Stack exhaustion - Out-of-bounds read - Buffer error - Use-after-free?? - Invalid memory access
* Note: This check requires an account with administrative privileges which can log into the host to scan. Absence of these conditions will result in the check not being performed and a False Negative for all vulnerable hosts.
* References: https://helpx.adobe.com/kr/security/products/acrobat/apsb20-24.html
* Platforms Affected: Adobe Reader versions prior equal to 2015.006.30518 Microsoft Windows Any version Linux Any version |
Recommendation |
Upgrade to the latest version of Adobe Reader (2015.006.30505 later), as described in the Adobe Security bulletin at https://helpx.adobe.com/kr/security/products/acrobat/apsb20-24.html |
Related URL |
CVE-2020-9592,CVE-2020-9593,CVE-2020-9594,CVE-2020-9595,CVE-2020-9596,CVE-2020-9597,CVE-2020-9598,CVE-2020-9599,CVE-2020-9600,CVE-2020-9601 (CVE) |
Related URL |
(SecurityFocus) |
Related URL |
(ISS) |
|