Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Mac OS X) Network Vulnerability

Summary

The host is installed with Adobe Acrobat and is prone to unspecified Out-of-bounds error vulnerability.

Impact

Successful exploitation will allow context-dependent attacker to cause a crash or potentially disclose memory contents. Impact Level: Application

Solution

No solution or patch is available as of 3rd February, 2015. Information regarding this issue will updated once the solution details are available. For updates refer, http://www.adobe.com/in/products/acrobat.html

Insight

The error exists due to an out-of-bounds read flaw in CoolType.dll

Affected

Adobe Acrobat 10.x through 10.1.13 and Adobe Acrobat 11.x through 11.0.10 on on Mac OS X.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://code.google.com/p/google-security-research/issues/detail?id=149
http://osvdb.org/117687

Updated on 2015-03-25

Severity

Classification

CVE CVE-2014-9161

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Remote Code Execution Vulnerability(Win)
Adobe Air Remote Code Execution Vulnerability -June13 (Mac OS X)
Adobe Acrobat Out-of-bounds Vulnerability Feb15 (Windows)
Adobe AIR Multiple Vulnerabilities-01 Sep14 (Windows)
Adobe Captivate Insecure Library Loading Vulnerability

Take action and discover your vulnerabilities