Summary
This host is installed with Adobe Reader and is prone to multiple vulnerabilities.
Impact
Successful exploitation will let attackers to inject malicious scripting code, disclose sensitive information or execute arbitrary code by tricking a user into opening a specially crafted PDF document.
Impact Level: System/Application
Solution
Upgrade to Adobe Reader/Acrobat version 9.3.2 or 8.2.2 or later.
For updates refer to http://www.adobe.com
Insight
The flaws are due to buffer overflows, memory corruptions and input validation errors when processing malformed data within a PDF document.
Affected
Adobe Reader version 9.x before 9.3.2 on Linux.
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- 3S CoDeSys CmpWebServer Multiple Vulnerabilities
- Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Linux)
- Adobe AIR Multiple Vulnerabilities -01 Feb13 (Mac OS X)
- Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Windows)
- Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Linux)