Main Vulnerability Database Vulnerabilities #VU15140

#VU15140 Integer overflow in Adobe Reader and Adobe Acrobat - CVE-2018-12842

Published: October 2, 2018

Vulnerability identifier: #VU15140

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:A/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2018-12842

CWE-ID: CWE-190

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Adobe Reader
Adobe Acrobat

Software vendor:
Adobe

Description

The vulnerability allows a remote attacker to gain access to sensitive information.

The vulnerability exists due to a boundary error when processing PDF files. A remote attacker can create a specially crafted PDF document, trick the victim into opening it, trigger integer overflow and gain access to sensitive information stored in memory.

Remediation

Install updates from vendor's website.

External links

https://helpx.adobe.com/security/products/acrobat/apsb18-30.html

#VU15140 Integer overflow in Adobe Reader and Adobe Acrobat - CVE-2018-12842

Description

Remediation

External links

Please verify you're human