Number: AV16-006
Date: 12 January 2016
Purpose
The purpose of this advisory is to bring attention to the recently released security updates for Adobe Acrobat and Reader.
Assessment
Adobe has released Security Bulletin APSB16-02 to address critical vulnerabilities that could allow an attacker to take control of the affected system. All Platforms are reported as affected.
Affected software versions:
- Acrobat DC 15.009.20077 and earlier versions
- Acrobat Reader DC 15.009.20077 and earlier versions
- Acrobat DC 15.006.30097 and earlier versions
- Acrobat Reader DC 15.006.30097 and earlier versions
- Acrobat XI 11.0.13 and earlier versions
- Reader XI 11.0.13 and earlier versions
CVE References: CVE-2016-0931, CVE-2016-0932, CVE-2016-0933, CVE-2016-0934, CVE-2016-0935, CVE-2016-0936, CVE-2016-0937, CVE-2016-0938, CVE-2016-0939, CVE-2016-0940, CVE-2016-0941, CVE-2016-0942, CVE-2016-0943, CVE-2016-0944, CVE-2016-0945, CVE-2016-0946, CVE-2016-0947
Suggested Action
CCIRC recommends that system administrators test and deploy the vendor-released updates to affected applications accordingly.
References:
https://helpx.adobe.com/security/products/reader/apsb16-02.html