Summary
The host is installed with Adobe Reader
and is prone to unspecified Out-of-bounds error vulnerability.
Impact
Successful exploitation will allow
context-dependent attacker to cause a crash or potentially disclose memory contents.
Impact Level: Application
Solution
Upgrade to Adobe Reader version 10.1.13
or 11.0.10 or later. For updates refer,
http://www.adobe.com/in/products/reader.html
Insight
The error exists due to an out-of-bounds
read flaw in CoolType.dll
Affected
Adobe Reader 10.x before 10.1.13 and
Adobe Reader 11.x before 11.0.10 on Windows.
Detection
Get the installed version with the help
of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-9161 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Adobe Flash Player Arbitrary Code Execution Vulnerability (Linux)
- Adobe AIR Multiple Vulnerabilities(APSB14-22)-(Windows)
- Aastra IP Telephone Hardcoded Telnet Password Security Bypass Vulnerability
- Adobe Acrobat Multiple Unspecified Vulnerabilities - Mac OS X
- Adobe Air Multiple Vulnerabilities - November12 (Windows)