Adobe.Acrobat.Pro.DC.AcroForm.setFocus.Use.After.Free

description-logoDescription

This indicates an attack attempt to exploit a Use After Free Vulnerability in Adobe Systems Acrobat Reader DC (Continuous).
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted PDF file. A remote attacker could exploit the vulnerability by enticing an unsuspecting user to open a maliciously crafted PDF document, leading to arbitrary code execution.

affected-products-logoAffected Products

Adobe Systems Acrobat DC (Classic) 2015.006.30498 and earlier
Adobe Systems Acrobat DC (Classic) 2017.011.30143 and earlier
Adobe Systems Acrobat DC (Continuous) 2019.012.20035 and earlier
Adobe Systems Acrobat Reader DC (Classic) 2015.006.30498 and earlier
Adobe Systems Acrobat Reader DC (Classic) 2017.011.30143 and earlier
Adobe Systems Acrobat Reader DC (Continuous) 2019.012.20035 and earlier

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/acrobat/apsb19-41.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-02-04 15.770 Default_action:pass:drop
2020-01-07 15.753