Summary
This host is installed with Adobe Reader and is prone to information disclosure vulnerability.
Impact
Successful exploitation will allow attackers to gain knowledge of potentially sensitive information and execute arbitrary local programs on user's system.
Impact Level: System/Application
Solution
Upgrade to Adobe Reader 7.0.5 or later. For
updates refer to http://get.adobe.com/reader
Insight
Flaw exist due to an error in the adobe reader control which allows reading the contents of certain text files.
Affected
Adobe Reader version 7.0.0 and 7.0.1 on Mac OS X.
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2005-1306, CVE-2005-1623, CVE-2005-1624 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Adobe Products Unspecified Cross-Site Scripting Vulnerability June-2011 (Windows)
- Adobe Digital Edition Information Disclosure Vulnerability (Windows)
- Arora Common Name SSL Certificate Spoofing Vulnerability (Linux)
- Apple QuickTime Multiple Arbitrary Code Execution Vulnerabilities (Win)
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Mac OS X)