Summary
This host is installed with Adobe Reader and is prone to Denial of Service vulnerability.
Impact
Successful exploitation will allow attacker to execute arbitrary code or cause a denial of service via a crafted PDF document.
Impact Level: System/Application
Solution
Upgrade to Adobe Reader version 9.3.2 or later,
For updates refer to http://www.adobe.com
Insight
The flaw is due to an error in 'custom heap management system', allows the attackers to execute arbitrary code via a crafted program that is specified in a PDF document.
Affected
Adobe Reader version 9.3.1 on Linux.
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2010-1241 -
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Google Chrome Multiple Denial of Service Vulnerabilities - March12 (Mac OS X)
- Apple Safari Multiple Vulnerabilities June-09 (Win) - I
- Epson EventManager 'x-protocol-version' Denial of Service Vulnerability
- Google Chrome Multiple Denial of Service Vulnerabilities - February 11(Linux)
- EMC Data Protection Advisor NULL Pointer Dereference Denial of Service Vulnerability