Initiatives for
As the national authority for Cybersecurity the CCB has developed several initiatives for specific publics which are presented here.
Adobe Reader Remote Code Execution
Image
Published : 14/05/2018
Reference:
Advisory #2018-15
Version:
1.0
Affected software:
Adobe Acrobat
Type:
Double Free Vulnerability in Adobe Reader allowing for remote code execution
CVE/CVSS:
- CVE-2018-4990 :
- Acrobat DC (2018.011.20038 and earlier versions)
- Acrobat Reader DC (2018.011.20038 and earlier versions )
- Acrobat 2017 (011.30079 and earlier versions)
- Acrobat Reader DC 2017 (2017.011.30079 and earlier versions)
- Acrobat DC (Classic 2015) (2015.006.30417 and earlier versions)
- Acrobat Reader DC (Classic 2015) (2015.006.30417 and earlier versions)
Sources
https://www.welivesecurity.com/2018/05/15/tale-two-zero-days/
Risks
CVE-2018-4990 : remote code execution.
Description
Due to a vulnerability in Adobe Reader, an attacker could use a specially crafted PDF which would execute a malicious code on opening of the file.
This vulnerability can be combined with another vulnerability in Microsoft. This vulnerability is described in CERT.be advisory #2018-016.
Recommended Actions
CERT.be recommends you to :
- Disable JavaScript execution in PDF files
- Patch your systems :
References
https://helpx.adobe.com/security/products/acrobat/apsb18-09.html