virus logo Intrusion Prevention

Adobe.Reader.Acrobat.Engine.Policy.URL.Parsing.Security.Bypass

description-logoDescription

This indicates an attack attempt to exploit a Security Bypass vulnerability in Adobe Acrobat and Reader.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted FDF file. A remote attacker may be able to exploit this to bypass security mechanisms on the application, via a crafted FDF file.

affected-products-logoAffected Products

Adobe Acrobat DC Continuous for Windows 2017.011.30078
Adobe Acrobat DC Continuous for Macintosh 2017.011.30078
Adobe Acrobat Reader DC Continuous for Windows 2017.011.30078
Adobe Acrobat Reader DC Continuous for Macintosh 2017.011.30078
Adobe Acrobat DC Classic for Windows 2015.006.30403
Adobe Acrobat DC Classic for Macintosh 2015.006.30403
Adobe Acrobat Reader DC Classic for Windows 2015.006.30403
Adobe Acrobat Reader DC Classic for Macintosh 2015.006.30403

Impact logoImpact

Security Bypass: remote attackers can bypass security checks of vulnerable systems.

recomended-action-logoRecommended Actions

Upgrade to the latest version available from the website.
https://helpx.adobe.com/security/products/acrobat/apsb18-09.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2019-07-03 14.642 Sig Added
2019-06-06 14.627 Severity:high:medium

References

APSB18-09
ID 46049
Created May 15, 2018
Updated Nov 23, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2018-4979
Exploit Prediction Score 76.45%
Default Action drop
Active
Affected OS Windows, MacOS
Affected App Adobe