Adobe Reader Multiple Vulnerabilities Dec06 (Windows) Network Vulnerability

Summary

This host is installed with Adobe Reader and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to conduct denial of service, possibly execute arbitrary code and compromise a user's system. Impact Level: System/Application

Solution

Upgrade to Adobe Reader version 8.0 or later. For updates refer to http://get.adobe.com/reader

Insight

Flaws are due to errors in the 'AcroPDF ActiveX' control in AcroPDF.dll.

Affected

Adobe Reader version 7.0 through 7.0.8 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://osvdb.org/31057
http://osvdb.org/31058
http://secunia.com/advisories/23138
http://securitytracker.com/id?1017297
http://www.adobe.com/support/security/bulletins/apsb06-20.html
http://www.kb.cert.org/vuls/id/198908
http://xforce.iss.net/xforce/xfdb/30574

Updated on 2015-03-25

Severity

Classification

CVE CVE-2006-6027, CVE-2006-6236

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Acrobat Multiple Vulnerabilities-01 Dec14 (Windows)
Adobe AIR Multiple Vulnerabilities -01 April 13 (Mac OS X)
Adobe Acrobat Multiple Vulnerabilities-01 Sep14 (Windows)
Adobe Acrobat Multiple Vulnerabilities -01 Jan 13 (Windows)
Adobe Acrobat and Reader 'printSeps()' Function Heap Corruption Vulnerability

Take action and discover your vulnerabilities