Adobe Reader Information Disclosure & Denial Of Service Vulnerabilities (Windows) Network Vulnerability

Summary

This host is installed with Adobe Reader and is prone to information disclosure and denial of service vulnerabilities.

Impact

Successful exploitation will allow attackers to conduct denial of service attack and the disclosure of sensitive information. Impact Level: Application

Solution

Upgrade to Adobe Reader version 7.0.5 or later. For updates refer to http://get.adobe.com/reader

Insight

Flaws exist due to, - An unspecified error in the 'LoadFile' method. - An unspecified error within the processing of PDF documents containing a negative root page node 'Count' value.

Affected

Adobe Reader version 7.0 and earlier on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/14813
http://www.osvdb.com/15242

Updated on 2017-03-28

Severity

Classification

CVE CVE-2005-0035, CVE-2005-0492

CVSS	Base Score: 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows)
Apple Safari Secure Cookie Security Bypass Vulnerability (Windows)
Adobe Reader Plugin Signature Bypass Vulnerability (Mac OS X)
Adobe Reader Multiple Vulnerabilities - Aug07 (Windows)
Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Win)

Adobe Reader Information Disclosure & Denial of Service Vulnerabilities (Windows)

Take action and discover your vulnerabilities