Nuance PDF Reader Multiple Memory Corruption Vulnerabilities Network Vulnerability

Summary

The host is installed with Nuance PDF Reader and is prone to multiple memory-corruption vulnerabilities.

Impact

Successful exploitation allows an attacker to corrupt memory, execute arbitrary code within the context of the user running the affected application or failed attempts may cause a denial-of-service. Impact Level: System/Application

Solution

No solution or patch was made available for at least one year since disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one.

Insight

Multiple unspecified flaws as user input is not properly sanitized when handling PDF files.

Affected

Nuance PDF Reader version 7.0

References

http://en.securitylab.ru/nvd/438057.php
http://secunia.com/advisories/cve_reference/CVE-2013-0113
http://www.kb.cert.org/vuls/id/248449
http://www.osvdb.com/90176

Updated on 2015-03-25

Severity

Classification

CVE CVE-2013-0113

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Active Perl Locale::Maketext Module Multiple Code Injection Vulnerabilities (Windows)
Adobe Air Multiple Vulnerabilities - October 12 (Mac OS X)
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 May13 (Mac OS X)
Adobe AIR Multiple Vulnerabilities(APSB14-24)-(Windows)
Adobe AIR Multiple Vulnerabilities -01 Feb13 (Mac OS X)

Take action and discover your vulnerabilities