Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Adobe Acrobat Reader DC NTLMv2 SSO Information Disclosure via LoadFile
Vulnerability Description
Acrobat Reader DC ActiveX Control versions 2021.005.20060 (and earlier), 2020.004.30006 (and earlier) and 2017.011.30199 (and earlier) are affected by an Information Disclosure vulnerability. An unauthenticated attacker could leverage this vulnerability to obtain NTLMv2 credentials. Exploitation of this issue requires user interaction in that a victim must visit an attacker controlled web page.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N
Vulnerability Type
信息暴露
Vulnerability Title
Adobe Acrobat和Adobe Reader 信息泄露漏洞
Vulnerability Description
Adobe Acrobat和Adobe Reader都是美国奥多比(Adobe)公司的产品。Adobe Acrobat是一套PDF文件编辑和转换工具。Adobe Reader是一套PDF文档阅读软件。 Adobe Acrobat 和 Reader存在信息泄露漏洞,该漏洞的存在是由于一个NULL指针解除引用错误。远程攻击者可利用该漏洞可以欺骗受害者打开一个特制的文件并执行拒绝服务(DoS)攻击。该漏洞允许远程攻击者可利用该漏洞执行拒绝服务(DoS)攻击。
CVSS Information
N/A
Vulnerability Type
N/A