www.belgium.be Logo of the federal government

Adobe Reader Remote Code Execution

Reference: 
Advisory #2018-15
Version: 
1.0
Affected software: 
Adobe Acrobat
Type: 
Double Free Vulnerability in Adobe Reader allowing for remote code execution
CVE/CVSS: 
  • CVE-2018-4990 :
    • Acrobat DC (2018.011.20038 and earlier versions)
    • Acrobat Reader DC (2018.011.20038 and earlier versions )
    • Acrobat 2017 (011.30079 and earlier versions)
    • Acrobat Reader DC 2017 (2017.011.30079 and earlier versions)
    • Acrobat DC (Classic 2015) (2015.006.30417 and earlier versions)
    • Acrobat Reader DC (Classic 2015) (2015.006.30417 and earlier versions)
Date: 
15/05/2018

Sources

https://www.welivesecurity.com/2018/05/15/tale-two-zero-days/

Risks

CVE-2018-4990 : remote code execution.

Description

Due to a vulnerability in Adobe Reader, an attacker could use a specially crafted PDF which would execute a malicious code on opening of the file.

This vulnerability can be combined with another vulnerability in Microsoft. This vulnerability is described in CERT.be advisory #2018-016.

Recommended Actions

CERT.be recommends you to :

  • Disable JavaScript execution in PDF files
  • Patch your systems :

References

https://helpx.adobe.com/security/products/acrobat/apsb18-09.html

​​