| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.9 | $0-$5k | 0.00 |
Summary
A vulnerability marked as critical has been reported in Adobe Acrobat Reader 15/up to 11 on Win/OS X. The affected element is an unknown function. This manipulation causes use after free. The identification of this vulnerability is CVE-2016-6938. It is possible to initiate the attack remotely. There is no exploit available. It is suggested to upgrade the affected component.
Details
A vulnerability has been found in Adobe Acrobat Reader 15/up to 11 on Win/OS X (Document Reader Software) and classified as critical. Affected by this vulnerability is an unknown code. The manipulation with an unknown input leads to a use after free vulnerability. The CWE definition for the vulnerability is CWE-416. Referencing memory after it has been freed can cause a program to crash, use unexpected values, or execute code. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Use-after-free vulnerability in Adobe Reader and Acrobat before 11.0.17, Acrobat and Acrobat Reader DC Classic before 15.006.30198, and Acrobat and Acrobat Reader DC Continuous before 15.017.20050 on Windows and OS X allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4255.
The weakness was shared 09/12/2016 by Steven Seeley with Zero Day Initiative as APSB16-26 as confirmed security bulletin (Website). The advisory is shared at helpx.adobe.com. The security bulletin contains:
September 12, 2016: added references to CVE-2016-6937 and CVE-2016-6938, which were inadvertently omitted from the bulletin.This vulnerability is known as CVE-2016-6938 since 08/23/2016. The attack can be launched remotely. The exploitation doesn't need any form of authentication. It demands that the victim is doing some kind of user interaction. Neither technical details nor an exploit are publicly available.
The vulnerability scanner Nessus provides a plugin with the ID 92036 (Adobe Acrobat < 11.0.17 / 15.006.30198 / 15.017.20050 Multiple Vulnerabilities (APSB16-26) (Mac OS X)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family MacOS X Local Security Checks. The commercial vulnerability scanner Qualys is able to test this issue with plugin 370084 (Adobe Reader and Acrobat Multiple Vulnerabilities (APSB16-26)).
Upgrading to version 11.0.17, 15.006.30198 or 15.017.20050 eliminates this vulnerability. A possible mitigation has been published even before and not after the disclosure of the vulnerability.
The vulnerability is also documented in the databases at Tenable (92036) and SecurityFocus (BID 93016†). The entries VDB-89076, VDB-89077, VDB-89078 and VDB-89079 are related to this item. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Type
Vendor
Name
Version
License
Website
- Vendor: https://www.adobe.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 8.0VulDB Meta Temp Score: 7.9
VulDB Base Score: 6.3
VulDB Temp Score: 6.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 9.8
NVD Vector: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Use after freeCWE: CWE-416 / CWE-119
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 92036
Nessus Name: Adobe Acrobat < 11.0.17 / 15.006.30198 / 15.017.20050 Multiple Vulnerabilities (APSB16-26) (Mac OS X)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 68089
OpenVAS Name: Adobe Reader Security Updates(apsb16-26)-Windows
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: Acrobat Reader 11.0.17/15.006.30198/15.017.20050
Timeline
07/07/2016 🔍08/23/2016 🔍
09/12/2016 🔍
09/12/2016 🔍
09/16/2016 🔍
09/18/2016 🔍
10/03/2024 🔍
Sources
Vendor: adobe.comAdvisory: APSB16-26
Researcher: Steven Seeley
Organization: Zero Day Initiative
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2016-6938 (🔍)
GCVE (CVE): GCVE-0-2016-6938
GCVE (VulDB): GCVE-100-91669
OVAL: 🔍
SecurityFocus: 93016 - Adobe Acrobat and Reader CVE-2016-6938 Use-After-Free Remote Code Execution Vulnerability
See also: 🔍
Entry
Created: 09/18/2016 10:00Updated: 10/03/2024 17:08
Changes: 09/18/2016 10:00 (68), 04/07/2017 10:49 (13), 09/19/2022 07:54 (3), 10/03/2024 17:08 (16)
Complete: 🔍
Cache ID: 216:CC5:103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.