Adobe Acrobat Pro XI STIG Version Comparison

There are 1 differences between versions v1 r1 (July 26, 2017) (the "left" version) and v1 r2 (Jan. 26, 2018) (the "right" version).

Check ADBP-XI-005000 was added to the benchmark in the "right" version.

This check's original form is available here.

Title

An unsupported Adobe Acrobat Pro version must not be installed.

Check Content

For Windows systems: Select Settings >> System >> Apps and Features For UNIX/Linux systems: Utilize the relevant UNIX/Linux OS commands to identify installed software. If Adobe Acrobat XI Pro is installed, review security plan documentation for risk acceptance of temporary operation while Acrobat XI Pro is in the process of being replaced or upgraded. If Adobe Acrobat XI Pro is installed on the system with no documented risk acceptance, or if high-risk vulnerabilities associated with Acrobat XI Pro become known or publicized, this is a finding.

Discussion

Failure to install the most current Adobe Acrobat Pro version leaves a system vulnerable to exploitation. Current versions correct known security and system vulnerabilities. If the Adobe Acrobat Pro installation is not at the most current version and patch level, this is a Category 1 finding since new vulnerabilities will not be patched. Adobe Acrobat Pro XI is End of Life. Reference the following URL: http://www.adobe.com/support/products/enterprise/eol/. Click on "Adobe enterprise products and technical support periods".

Fix

Upgrade to latest version of Adobe Acrobat or uninstall software.