Summary
This host is installed with Adobe Reader/Acrobat and is prone to multiple vulnerabilities.
Impact
Successful exploitation will let attackers to crash an affected application or execute arbitrary code by tricking a user into opening a specially crafted PDF document.
Impact Level: System/Application
Solution
Upgrade to Adobe Reader/Acrobat version 9.3.3 or 8.2.3 or later.
For updates refer to http://www.adobe.com
Insight
The flaws are caused by memory corruptions, invalid pointers reference, uninitialized memory, array-indexing and use-after-free errors when processing malformed data within a PDF document.
Affected
Adobe Reader version 8.x before 8.2.3 and 9.x before 9.3.3, Adobe Acrobat version 8.x before 8.2.3 and 9.x before 9.3.3 on windows.
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe AIR Multiple Vulnerabilities-01 Jun14 (Mac OS X)
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Mac OS X)
- Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Mac OS X)
- Adobe Acrobat Multiple Vulnerabilities - 01 May14 (Windows)