CVE-2018-4901

HIGH

Adobe Acrobat/Reader <17.011.30070/<18.009.20050/<15.006.30394 Out-of-bounds Write

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-4901. PoCs published by bigric3.

AI-analyzed exploit summary This repository contains a README referencing a blog post analyzing CVE-2018-4901, which involves a crash PoC and information leak in Adobe Acrobat. No actual exploit code is present in the provided files.

Description

An issue was discovered in Adobe Acrobat Reader 2018.009.20050 and earlier versions, 2017.011.30070 and earlier versions, 2015.006.30394 and earlier versions. The vulnerability is caused by the computation that writes data past the end of the intended buffer; the computation is part of the document identity representation. An attacker can potentially leverage the vulnerability to corrupt sensitive data or execute arbitrary code.

Exploits (1)

nomisec WRITEUP 18 stars

by bigric3 · poc

https://github.com/bigric3/CVE-2018-4901

View Code ZIP pw:eip

This repository contains a README referencing a blog post analyzing CVE-2018-4901, which involves a crash PoC and information leak in Adobe Acrobat. No actual exploit code is present in the provided files.

Classification

Writeup 80%

Attack Type

Info Leak

Complexity

Theoretical

Reliability

Theoretical

Target: Adobe Acrobat

No auth needed

Prerequisites: Adobe Acrobat installation

MITRE ATT&CK

T1082 - System Information Discovery

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Vendor Advisory x_refsource_confirm

https://helpx.adobe.com/security/products/acrobat/apsb18-02.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1040364

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/102994

Scores

CVSS v3 8.8

EPSS 0.1681

EPSS Percentile 96.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

CWE

CWE-787

Status published

Products (6)

adobe/acrobat 17.0 - 17.011.30070

adobe/acrobat_dc - - 18.009.20050

adobe/acrobat_dc 15.0 - 15.006.30394

adobe/acrobat_reader 17.0 - 17.011.30070

adobe/acrobat_reader_dc - - 18.009.20050

adobe/acrobat_reader_dc 15.0 - 15.006.30394

Published Feb 27, 2018

Tracked Since Feb 18, 2026