CVSS: 8.8EPSS: 2%CPEs: 6EXPL: 0CVE-2018-4888 – Adobe Reader DC XFA dashDot Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4888
23 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability. The vulnerability is triggered by a crafted PDF file that can cause a memory access violation exception in the XFA engine because of a dangling reference left as a consequence of freeing an object in the computation that manipulates internal nodes in a graph representation of a docum... • http://www.securityfocus.com/bid/102995 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 2%CPEs: 6EXPL: 0CVE-2018-4894 – Adobe Acrobat Pro DC XPS Font Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2018-4894
21 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the XPS font processing. A successful attack can lead to sensitive data exposure. Se ha descubierto un problema en Adobe Acrobat Reader 2018.009.20050 y anteriores, 2017.011.30070 y anteriores y 2015.006.30394 y an... • http://www.securityfocus.com/bid/102996 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 5%CPEs: 6EXPL: 0CVE-2018-4904 – Adobe Acrobat Pro DC ImageConversion XPS TIFF dir count Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4904
21 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability. The vulnerability is triggered by crafted TIFF data within an XPS file, which causes an out of bounds memory access. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code. Se ha descubierto un problema en Adobe Acrobat Reader 2018.0... • http://www.securityfocus.com/bid/102992 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 2%CPEs: 6EXPL: 0CVE-2018-4905 – Adobe Acrobat Pro DC ImageConversion XPS TIFF YCbCrCoefficients Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2018-4905
21 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of TIFF processing within the XPS module. A successful attack can lead to sensitive data exposure. Se ha descubierto un problema en Adobe Acrobat Reader 2018.009.20050 y anteriores, 2017.011.30070 y anteriores y 2015.... • http://www.securityfocus.com/bid/102996 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 1%CPEs: 6EXPL: 0CVE-2018-4910 – Adobe Acrobat Pro DC OCG setIntent Heap-based Buffer Overflow Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4910
21 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a heap overflow vulnerability in the JavaScript engine. The vulnerability is triggered by a PDF file with crafted JavaScript code that manipulates the optional content group (OCG). A successful attack can lead to code corruption, control-flow hijack, or a code re-use attack. Se ha descubierto un problema en Adobe A... • http://www.securityfocus.com/bid/102992 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 2%CPEs: 6EXPL: 0CVE-2018-4912 – Adobe Acrobat Pro DC ImageConversion JPEG2000 Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2018-4912
21 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability occurs as a result of computation that reads data that is past the end of the target buffer; the computation is part of the image conversion module that handles JPEG 2000 data. A successful attack can lead to sensitive data exposure. Se ha descubierto un problema en Adobe Acrobat Reader 2018.009.20050 y anteriores, 2017.011.30070 y ... • http://www.securityfocus.com/bid/102996 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 1%CPEs: 6EXPL: 0CVE-2018-4913 – Adobe Acrobat Pro DC XFA picture Use-After-Free Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2018-4913
21 Feb 2018 — An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the XFA engine, related to DOM manipulation. The vulnerability is triggered by crafted XFA script definitions in a PDF file. Successful exploitation could lead to arbitrary code execution. Se ha descubierto un problema en Adobe Acrobat Reader 2018.009.20050 y anteriores, 2017.011.3... • http://www.securityfocus.com/bid/102995 • CWE-416: Use After Free •
CVSS: 9.3EPSS: 3%CPEs: 8EXPL: 0CVE-2017-16360
https://notcve.org/view.php?id=CVE-2017-16360
09 Dec 2017 — An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability is an instance of a use after free vulnerability in the MakeAccessible plugin, when creating an internal data structure. The mismatch between an old and a new object can provide an attacker with unintended memory access -- potentially leading to code corruption, control-flow hijack, or an infor... • http://www.securityfocus.com/bid/101818 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 3%CPEs: 8EXPL: 0CVE-2017-16361
https://notcve.org/view.php?id=CVE-2017-16361
09 Dec 2017 — An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability is an instance of a security bypass vulnerability when handling XFDF files. Se ha descubierto un problema en Adobe Acrobat y Reader: 2017.012.20098 y versiones anteriores, 2017.011.30066 y versiones anteriores, 2015.006.30355 y versiones anteriores y 11.0.22 y versiones anteriores. La vulnerabi... • http://www.securityfocus.com/bid/101830 •
CVSS: 9.3EPSS: 9%CPEs: 8EXPL: 0CVE-2017-16362
https://notcve.org/view.php?id=CVE-2017-16362
09 Dec 2017 — An issue was discovered in Adobe Acrobat and Reader: 2017.012.20098 and earlier versions, 2017.011.30066 and earlier versions, 2015.006.30355 and earlier versions, and 11.0.22 and earlier versions. This vulnerability is an instance of an out of bounds read vulnerability in the MakeAccesible plugin, when handling font data. It causes an out of bounds memory access, which sometimes triggers an access violation exception. Attackers can exploit the vulnerability by using the out of bounds access for unintended ... • http://www.securityfocus.com/bid/102140 • CWE-125: Out-of-bounds Read •