New Search

Multiple vulnerabilities in Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier

oval:org.cisecurity:def:8741

Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution (CVE-2020-9612) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have a race condition vulnerability. Successful exploitation could lead to security feature bypass. (CVE-2020-9615) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have a stack exhaustion vulnerability. Successful exploitation could lead to application denial-of-service. (CVE-2020-9611) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have a null pointer vulnerability. Successful exploitation could lead to application denial-of-service. (CVE-2020-9610) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have an out-of-bounds write vulnerability. Successful exploitation could lead to arbitrary code execution. (CVE-2020-9597 CVE-2020-9594) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have a security bypass vulnerability. Successful exploitation could lead to security feature bypass. (CVE-2020-9614 CVE-2020-9613 CVE-2020-9596 CVE-2020-9592) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead to information disclosure. (CVE-2020-9609 CVE-2020-9608 CVE-2020-9603 CVE-2020-9602 CVE-2020-9601 CVE-2020-9600 CVE-2020-9599) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have a buffer error vulnerability. Successful exploitation could lead to arbitrary code execution. (CVE-2020-9605 CVE-2020-9604) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have an use-after-free vulnerability. Successful exploitation could lead to arbitrary code execution. (CVE-2020-9607 CVE-2020-9606) Adobe Acrobat and Reader versions 2020.006.20042 and earlier 2017.011.30166 and earlier 2017.011.30166 and earlier and 2015.006.30518 and earlier have an invalid memory access vulnerability. Successful exploitation could lead to information disclosure. (CVE-2020-9598 CVE-2020-9595 CVE-2020-9593)

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 10
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows 8
  • Microsoft Windows Server 2008
  • Microsoft Windows 8.1
  • Microsoft Windows 7
Class:
vulnerability
Reference(s):
  • APSB20-24
  • CVE-2020-9612
  • CVE-2020-9615
  • CVE-2020-9611
  • CVE-2020-9610
  • CVE-2020-9597
  • CVE-2020-9594
  • CVE-2020-9614
  • CVE-2020-9613
  • CVE-2020-9596
  • CVE-2020-9592
  • CVE-2020-9609
  • CVE-2020-9608
  • CVE-2020-9603
  • CVE-2020-9602
  • CVE-2020-9601
  • CVE-2020-9600
  • CVE-2020-9599
  • CVE-2020-9605
  • CVE-2020-9604
  • CVE-2020-9607
  • CVE-2020-9606
  • CVE-2020-9598
  • CVE-2020-9595
  • CVE-2020-9593
Product(s):
  • Adobe Acrobat 2017
  • Adobe Reader DC Classic
  • Adobe Acrobat DC Classic
  • Adobe Reader DC Continuous
  • Adobe Reader 2017
  • Adobe Acrobat DC Continuous