Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2022 Tenable Network Security, Inc.ADOBE_ACROBAT_813.NASL
HistoryAug 28, 2009 - 12:00 a.m.

Adobe Acrobat < 8.1.3 Multiple Vulnerabilities

2009-08-2800:00:00
This script is Copyright (C) 2009-2022 Tenable Network Security, Inc.
www.tenable.com
23
JSON

The version of Adobe Acrobat installed on the remote host is earlier than 9.0 / 8.1.3. Such versions are reportedly affected by multiple vulnerabilities :

  • There is a published denial of service issue.
    (CVE-2008-2549)

  • A stack-based buffer overflow when parsing format strings containing a floating point specifier in the ‘util.printf()’ JavaScript function may allow an attacker to execute arbitrary code. (CVE-2008-2992)

  • Multiple input validation errors could lead to code execution. (CVE-2008-4812)

  • Multiple input validation issues could lead to remote code execution. (CVE-2008-4813)

  • A heap corruption vulnerability in an AcroJS function available to scripting code inside of a PDF document could lead to remote code execution. (CVE-2008-4817)

  • An input validation issue in the Download Manager used by Adobe Acrobat could lead to remote code execution during the download process. (CVE-2008-5364)

  • An issue in the Download Manager used by Adobe Acrobat could lead to a user’s Internet Security options being changed during the download process. (CVE-2008-4816)

  • An input validation issue in a JavaScript method could lead to remote code execution. (CVE-2008-4814)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(40802);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/03/08");

  script_cve_id(
    "CVE-2008-2549",
    "CVE-2008-2992",
    "CVE-2008-4812",
    "CVE-2008-4813",
    "CVE-2008-4814",
    "CVE-2008-4816",
    "CVE-2008-4817",
    "CVE-2008-5364"
  );
  script_bugtraq_id(
    29420,
    30035,
    32100,
    32103,
    32105
  );
  script_xref(name:"Secunia", value:"29773");
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/03/24");

  script_name(english:"Adobe Acrobat < 8.1.3 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The version of Adobe Acrobat on the remote Windows host is affected by
multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Adobe Acrobat installed on the remote host is earlier
than 9.0 / 8.1.3.  Such versions are reportedly affected by multiple
vulnerabilities :

  - There is a published denial of service issue.
    (CVE-2008-2549)

  - A stack-based buffer overflow when parsing format
    strings containing a floating point specifier in the
    'util.printf()' JavaScript function may allow an
    attacker to execute arbitrary code. (CVE-2008-2992)

  - Multiple input validation errors could lead to code
    execution. (CVE-2008-4812)

  - Multiple input validation issues could lead to remote
    code execution. (CVE-2008-4813)

  - A heap corruption vulnerability in an AcroJS function
    available to scripting code inside of a PDF document
    could lead to remote code execution. (CVE-2008-4817)

  - An input validation issue in the Download Manager used
    by Adobe Acrobat could lead to remote code execution
    during the download process. (CVE-2008-5364)

  - An issue in the Download Manager used by Adobe Acrobat
    could lead to a user's Internet Security options being
    changed during the download process. (CVE-2008-4816)

  - An input validation issue in a JavaScript method could
    lead to remote code execution. (CVE-2008-4814)");
  script_set_attribute(attribute:"see_also", value:"https://www.adobe.com/support/security/bulletins/apsb08-19.html");
  script_set_attribute(attribute:"solution", value:
"Upgrade to Adobe Acrobat 9.0 / 8.1.3 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2008-5364");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Adobe util.printf() Buffer Overflow');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");
  script_cwe_id(20, 119, 399);

  script_set_attribute(attribute:"vuln_publication_date", value:"2008/05/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2008/11/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/08/28");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:acrobat");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Windows");

  script_copyright(english:"This script is Copyright (C) 2009-2022 Tenable Network Security, Inc.");

  script_dependencies("adobe_acrobat_installed.nasl");
  script_require_keys("SMB/Acrobat/Version");

  exit(0);
}

include("global_settings.inc");

version = get_kb_item("SMB/Acrobat/Version");
if (isnull(version)) exit(1, "The 'SMB/Acrobat/Version' KB item is missing.");

if (
  version =~ "^[0-6]\." ||
  version =~ "^7\.(0\.|1\.0\.)" ||
  version =~ "^8\.(0\.|1\.[0-2][^0-9.]?)"
)
{
  version_ui = get_kb_item("SMB/Acrobat/Version_UI");
  if (report_verbosity > 0 && version_ui)
  {
    path = get_kb_item("SMB/Acrobat/Path");
    if (isnull(path)) path = "n/a";

    report = string(
      "\n",
      "  Path              : ", path, "\n",
      "  Installed version : ", version_ui, "\n",
      "  Fix               : 9.0 / 8.1.3\n"
    );
    security_hole(port:get_kb_item("SMB/transport"), extra:report);
  }
  else security_hole(get_kb_item("SMB/transport"));
}
else exit(0, "Acrobat "+version+" is not affected.");
VendorProductVersionCPE
adobeacrobatcpe:/a:adobe:acrobat

Related

nessus 6
openvas 5
gentoo 1
redhat 1
seebug 4
prion 8
cvelist 8
cve 8
securityvulns 10
ubuntucve 5
checkpoint_advisories 3
zdi 3
canvas 1
packetstorm 2
exploitpack 1
saint 4
cert 1
cisa_kev 1
exploitdb 1
attackerkb 1
coresecurity 1
threatpost 1
thn 2
nessus
nessus
Adobe Reader < 8.1.3 / 9.0 Multiple Vulnerabilities
2008-11-04 00:00:00
openSUSE Security Update : acroread (acroread-295)
2009-07-21 00:00:00
SuSE 10 Security Update : Acrobat Reader (ZYPP Patch Number 5746)
2008-11-24 00:00:00
openvas
openvas
Adobe Reader/Acrobat Multiple Vulnerabilities (APSB08-19) - Windows
2008-11-05 00:00:00
Adobe Reader/Acrobat Multiple Vulnerabilities (APSB08-19) - Linux
2008-11-05 00:00:00
Adobe Reader/Acrobat Multiple Vulnerabilities - Nov08 (Windows)
2008-11-05 00:00:00
gentoo
gentoo
Adobe Reader: User-assisted execution of arbitrary code
2009-01-13 00:00:00
redhat
redhat
(RHSA-2008:0974) Critical: acroread security update
2008-11-12 00:00:00
seebug
seebug
Adobe Acrobat和Reader 8.1.2多个安全漏洞
2008-11-06 00:00:00
NOS Microsystems getPlus ActiveX控件缓冲区溢出漏洞
2008-11-07 00:00:00
Adobe Reader - util.printf() JavaScript Function Stack Overflow Exploit (2)
2014-07-01 00:00:00
prion
prion
Stack overflow
2008-12-08 11:30:00
Design/Logic Flaw
2008-11-05 15:00:00
Security feature bypass
2008-11-05 15:00:00
cvelist
cvelist
CVE-2008-5364
2008-12-08 11:00:00
CVE-2008-4817
2008-11-05 14:51:00
CVE-2008-4812
2008-11-05 14:51:00
cve
cve
CVE-2008-5364
2008-12-08 11:30:00
CVE-2008-4814
2008-11-05 15:00:00
CVE-2008-4817
2008-11-05 15:00:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2008-11-05 00:00:00
iDefense Security Advisory 11.04.08: Multiple Vendor NOS Microsystems getPlus Downloader Stack Buffer Overflow Vulnerability
2008-11-10 00:00:00
iDefense Security Advisory 11.04.08: Adobe Acrobat And Reader AcroJS Heap Corruption Vulnerability
2008-11-05 00:00:00
ubuntucve
ubuntucve
CVE-2008-4814
2008-11-05 00:00:00
CVE-2008-4817
2008-11-05 00:00:00
CVE-2008-2549
2008-06-04 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat PDF Font Processing Memory Corruption (CVE-2008-4813)
2010-03-08 00:00:00
Workaround for Adobe Reader and Acrobat util.printf Stack Buffer Overflow Vulnerability
2008-12-01 00:00:00
Adobe Reader and Acrobat util.printf Stack Buffer Overflow (CVE-2008-2992)
2009-12-31 00:00:00
zdi
zdi
Adobe Acrobat Reader Malformed PDF Code Execution Vulnerability
2008-11-04 00:00:00
Adobe Acrobat PDF Javascript getCosObj Memory Corruption Vulnerability
2008-11-04 00:00:00
Adobe Acrobat PDF Javascript printf Stack Overflow Vulnerability
2008-11-04 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_JS3
2008-11-04 18:29:00
packetstorm
packetstorm
adobe-printf.txt
2008-11-06 00:00:00
Adobe util.printf() Buffer Overflow
2009-11-26 00:00:00
exploitpack
exploitpack
Adobe Reader - util.printf() JavaScript Function Stack Overflow (2)
2008-11-05 00:00:00
saint
saint
Adobe Acrobat util.printf JavaScript function buffer overflow
2008-11-10 00:00:00
Adobe Acrobat util.printf JavaScript function buffer overflow
2008-11-10 00:00:00
Adobe Acrobat util.printf JavaScript function buffer overflow
2008-11-10 00:00:00
cert
cert
Adobe Reader and Acrobat util.printf() JavaScript function stack buffer overflow
2008-11-04 00:00:00
cisa_kev
cisa_kev
Adobe Reader and Acrobat Input Validation Vulnerability
2022-03-03 00:00:00
exploitdb
exploitdb
Adobe Reader - &#039;util.printf()&#039; JavaScript Function Stack Overflow (2)
2008-11-05 00:00:00
attackerkb
attackerkb
CVE-2008-2992
2008-11-04 00:00:00
coresecurity
coresecurity
Adobe Reader Javascript Printf Buffer Overflow
2008-11-04 00:00:00
threatpost
threatpost
PBS Website Compromised, Used to Serve Exploits
2009-09-23 22:41:03
thn
thn
Bleeding Life 2 Exploit Pack Released
2011-10-24 04:30:00
Phoenix Exploit's Kit 2.8 mini version
2011-10-12 17:41:00
JSON
Related for ADOBE_ACROBAT_813.NASL
nessus6openvas5gentoo1redhat1seebug4prion8cvelist8cve8securityvulns10ubuntucve5checkpoint_advisories3zdi3canvas1packetstorm2exploitpack1saint4cert1cisa_kev1exploitdb1attackerkb1coresecurity1threatpost1thn2