Think you have a false positive on this rule?

Sid 1-37313

Message

FILE-PDF Adobe Acrobat Reader external entity data exfiltration attempt

Summary

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2014-8450, CVE-2015-4449, CVE-2015-4450, CVE-2015-5089, and CVE-2015-5092.

Impact

CVSS base score 5.0 CVSS impact score 2.9 CVSS exploitability score 10.0 confidentialityImpact PARTIAL integrityImpact NONE availabilityImpact NONE

CVE-2015-5088:

CVSS base score 5.0

CVSS impact score 2.9

CVSS exploitability score 10.0

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

Detailed information

CVE-2015-5088: Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2014-8450, CVE-2015-4449, CVE-2015-4450, CVE-2015-5089, and CVE-2015-5092.

Affected systems

  • adobe acrobat 10.0
  • adobe acrobat 10.0.1
  • adobe acrobat 10.0.2
  • adobe acrobat 10.0.3
  • adobe acrobat 10.1.0
  • adobe acrobat 10.1.1
  • adobe acrobat 10.1.2
  • adobe acrobat 10.1.3
  • adobe acrobat 10.1.4
  • adobe acrobat 10.1.5
  • adobe acrobat 10.1.6
  • adobe acrobat 10.1.7
  • adobe acrobat 10.1.8
  • adobe acrobat 10.1.9
  • adobe acrobat 10.1.10
  • adobe acrobat 10.1.11
  • adobe acrobat 10.1.12
  • adobe acrobat 10.1.13
  • adobe acrobat 10.1.14
  • adobe acrobat 11.0.0
  • adobe acrobat 11.0.1
  • adobe acrobat 11.0.2
  • adobe acrobat 11.0.3
  • adobe acrobat 11.0.4
  • adobe acrobat 11.0.5
  • adobe acrobat 11.0.6
  • adobe acrobat 11.0.7
  • adobe acrobat 11.0.8
  • adobe acrobat 11.0.9
  • adobe acrobat 11.0.10
  • adobe acrobat 11.0.11
  • adobe acrobat_dc 2015.006.30033
  • adobe acrobat_dc 2015.007.20033
  • adobe acrobat_reader 10.0
  • adobe acrobat_reader 10.0.1
  • adobe acrobat_reader 10.1
  • adobe acrobat_reader 10.1.1
  • adobe acrobat_reader 10.1.2
  • adobe acrobat_reader 10.1.3
  • adobe acrobat_reader 10.1.4
  • adobe acrobat_reader 10.1.5
  • adobe acrobat_reader 10.1.6
  • adobe acrobat_reader 10.1.7
  • adobe acrobat_reader 10.1.8
  • adobe acrobat_reader 10.1.9
  • adobe acrobat_reader 10.1.10
  • adobe acrobat_reader 10.1.11
  • adobe acrobat_reader 10.1.12
  • adobe acrobat_reader 10.1.13
  • adobe acrobat_reader 10.1.14
  • adobe acrobat_reader 11.0
  • adobe acrobat_reader 11.0.1
  • adobe acrobat_reader 11.0.2
  • adobe acrobat_reader 11.0.3
  • adobe acrobat_reader 11.0.4
  • adobe acrobat_reader 11.0.5
  • adobe acrobat_reader 11.0.6
  • adobe acrobat_reader 11.0.7
  • adobe acrobat_reader 11.0.8
  • adobe acrobat_reader 11.0.9
  • adobe acrobat_reader 11.0.10
  • adobe acrobat_reader 11.0.11
  • adobe acrobatreaderdc 2015.006.30033
  • adobe acrobatreaderdc 2015.007.20033

Ease of attack

CVE-2015-5088:

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

False positives

None known

False negatives

None known

Corrective action

Contributors

  • Talos research team.
  • This document was generated from data supplied by the national vulnerability database, a product of the national institute of standards and technology.
  • For more information see nvd.

Additional References

  • helpx.adobe.com/security/products/reader/apsb15-15.html
  • hyp3rlinx.altervista.org/advisories/MICROSOFT-INTERNET-EXPLORER-v11-XML-EXTERNAL-ENTITY-INJECTION-0DAY.txt