Original Issue Date: May 21, 2021
Severity Rating: HIGH
Software Affected
- Acrobat DC and Acrobat Reader DC (Continuous) version 2021.001.20150 and prior for Windows & version 2021.001.20149 and prior for macOS
- Acrobat 2020 and Acrobat Reader 2020 (Classic 2020) version 2020.001.30020 and prior for Windows & macOS
- Acrobat 2017 and Acrobat Reader 2017 (Classic 2017) version 2017.011.30194 and prior for Windows & macOS
Overview
Multiple vulnerabilities have been reported in Adobe Acrobat and Reader which could allow an attacker to execute arbitrary code, escalate privileges and cause memory leaks on the target system.
Description
These vulnerabilities exist in different versions of Adobe Acrobat and Reader due to use-after-free error, buffer overflow error, heap based buffer overflow error, out of bound read/write error or other boundary errors.
Successful exploitation of these vulnerabilities could allow an attacker to execute arbitrary code, escalate privileges and cause memory leaks on the target system.
Solution
Apply appropriate patches as mentioned in the Adobe Security Advisory APSB21-29
https://helpx.adobe.com/security/products/acrobat/apsb21-29.html
Disclaimer
The information provided herein is on “as is” basis, without warranty of any kind.