HTTP: Adobe Reader CVE-2015-4446 Security Bypass

This signature detects attempts to exploit a known vulnerability against Adobe Flash Player. A successful attack can lead to Security Bypass.

Extended Description

Adobe Reader and Acrobat 10.x before 10.1.15 and 11.x before 11.0.12, Acrobat and Acrobat Reader DC Classic before 2015.006.30060, and Acrobat and Acrobat Reader DC Continuous before 2015.008.20082 on Windows and OS X allow attackers to bypass intended access restrictions and perform a transition from Low Integrity to Medium Integrity via unspecified vectors, a different vulnerability than CVE-2015-5090 and CVE-2015-5106.

References

CVE: CVE-2015-4446

Short Name
HTTP:STC:ADOBE:CVE-2015-4446-CE
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
Adobe Bypass CVE-2015-4446 Reader Security
Release Date
09/08/2015
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3417
False Positive
Unknown
CVSS Score

7.5

Found a potential security threat?