Multiple security restriction bypass vulnerabilities in Adobe Reader and Acrobat

Multiple security restriction bypass vulnerabilities in Adobe Reader and Acrobat
Multiple security restriction bypass vulnerabilities in Adobe Reader and Acrobat

Release date:
Updated on:

Affected Systems:

Adobe Acrobat 11.x
Adobe Acrobat 10.x
Adobe Reader 11.x
Adobe Reader 10.x

Description:

Bugtraq id: 74604
CVE (CAN) ID: CVE-2015-3060, CVE-2015-3061, CVE-2015-3062, CVE-2015-3063, CVE-2015-3064, CVE-2015-3065, CVE-2015-3066, CVE-2015-3067, CVE-2015-3068, CVE-2015-3069, CVE-2015-3071

Adobe Reader (also known as Acrobat Reader) is an excellent PDF document reading software developed by Adobe. Acrobat is a series of products launched in 1993 for enterprises, technicians and creative professionals, making smart document delivery and collaboration more flexible, reliable, and secure.

Adobe Reader/Acrobat 10.xand 11. x have multiple security function bypass vulnerabilities. Attackers can exploit these vulnerabilities to bypass multiple security restrictions.

<* Source: Dave Weinstein
Simon Zuckerbraun
AbdulAziz harsiri
Brian Gorenc

Link: https://helpx.adobe.com/security/products/reader/apsb15-10.html
*>

Suggestion:

Vendor patch:

Adobe
-----
Adobe has released a Security Bulletin (apsb15-10) and patches for this:
Apsb15-10: Security Updates available for Adobe Reader and Acrobat
Link: https://helpx.adobe.com/security/products/reader/apsb15-10.html

Http://www.adobe.com/support/downloads/product.jsp? Product = 10 & platform = Windows
Http://www.adobe.com/support/downloads/product.jsp? Product = 10 & platform = Macintosh

This article permanently updates the link address: