virus logo Intrusion Prevention

Adobe.Acrobat.and.Reader.JS.Field.Name.Out.of.Bounds.Read

description-logoDescription

This indicates an attack attempt to exploit an Out of Bounds Read Vulnerability in Adobe Systems Acrobat Reader DC (Continuous).
This vulnerability is due to improper handling of Field Name in the Javascript. A remote attacker can exploit the vulnerability by enticing a target user into opening a crafted PDF document. Successful exploitation of this vulnerability would result in information disclosure and in the worst case remote code execution under the security context of the application.

affected-products-logoAffected Products

Adobe Systems Acrobat 2015 2015.006.30508 and earlier
Adobe Systems Acrobat 2017 2017.011.30156 and earlier
Adobe Systems Acrobat DC (Continuous) 2019.021.20061 and earlier
Adobe Systems Acrobat Reader 2015 2015.006.30508 and earlier
Adobe Systems Acrobat Reader 2017 2017.011.30156 and earlier
Adobe Systems Acrobat Reader DC (Continuous) 2019.021.20061 and earlier versions

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Apply the most recent upgrade or patch from the vendor.
https://helpx.adobe.com/security/products/acrobat/apsb20-05.html

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-10-15 16.944 Default_action:pass:drop
2020-08-24 15.910
ID 49426
Created Aug 13, 2020
Updated Oct 14, 2020
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2020-3744
Exploit Prediction Score 0.21%
Default Action drop
Active
Affected OS Windows, MacOS
Affected App Adobe