Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2018 Tenable Network Security, Inc.MACOSX_ADOBE_ACROBAT_APSB14-15.NASL
HistoryMay 14, 2014 - 12:00 a.m.

Adobe Acrobat < 10.1.10 / 11.0.07 Multiple Vulnerabilities (APSB14-15) (Mac OS X)

2014-05-1400:00:00
This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.
www.tenable.com
22
JSON

The version of Adobe Acrobat installed on the remote host is a version prior to 10.1.10 / 11.0.7. It is, therefore, affected by multiple vulnerabilities :

  • A heap overflow vulnerability exists that could lead to code execution. (CVE-2014-0511)

  • A security bypass vulnerability exists with input validation. (CVE-2014-0512)

  • An information disclosure vulnerability exists with the JavaScript APIs. (CVE-2014-0521)

  • Multiple memory corruption vulnerabilities exists that could lead to code execution. (CVE-2014-0522, CVE-2014-0523, CVE-2014-0524, CVE-2014-0526)

  • A vulnerability exists with how Reader handles a certain API call that could lead to code execution.
    (CVE-2014-0525)

  • A use-after-free vulnerability exists that could lead to code execution. (CVE-2014-0527)

  • A double-free vulnerability exists that could lead to code execution. (CVE-2014-0528)

  • A buffer overflow vulnerability exists that could lead to code execution. (CVE-2014-0529)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#
# (C) Tenable Network Security, Inc.
#

include("compat.inc");

if (description)
{
  script_id(74013);
  script_version("1.9");
  script_cvs_date("Date: 2018/07/14  1:59:36");

  script_cve_id(
    "CVE-2014-0511",
    "CVE-2014-0512",
    "CVE-2014-0521",
    "CVE-2014-0522",
    "CVE-2014-0523",
    "CVE-2014-0524",
    "CVE-2014-0525",
    "CVE-2014-0526",
    "CVE-2014-0527",
    "CVE-2014-0528",
    "CVE-2014-0529"
  );
  script_bugtraq_id(
    66205,
    66512,
    67360,
    67362,
    67363,
    67365,
    67366,
    67367,
    67368,
    67369,
    67370
  );

  script_name(english:"Adobe Acrobat < 10.1.10 / 11.0.07 Multiple Vulnerabilities (APSB14-15) (Mac OS X)");
  script_summary(english:"Checks version of Adobe Acrobat");

  script_set_attribute(attribute:"synopsis", value:
"The version of Adobe Acrobat on the remote Mac OS X host is affected
by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The version of Adobe Acrobat installed on the remote host is a version
prior to 10.1.10 / 11.0.7. It is, therefore, affected by multiple
vulnerabilities :

  - A heap overflow vulnerability exists that could lead to
    code execution. (CVE-2014-0511)

  - A security bypass vulnerability exists with input
    validation. (CVE-2014-0512)

  - An information disclosure vulnerability exists with the
    JavaScript APIs. (CVE-2014-0521)

  - Multiple memory corruption vulnerabilities exists that
    could lead to code execution. (CVE-2014-0522,
    CVE-2014-0523, CVE-2014-0524, CVE-2014-0526)

  - A vulnerability exists with how Reader handles a certain
    API call that could lead to code execution.
    (CVE-2014-0525)

  - A use-after-free vulnerability exists that could lead
    to code execution. (CVE-2014-0527)

  - A double-free vulnerability exists that could lead to
    code execution. (CVE-2014-0528)

  - A buffer overflow vulnerability exists that could lead
    to code execution. (CVE-2014-0529)

Note that Nessus has not tested for these issues but has instead
relied only on the application's self-reported version number.");
  script_set_attribute(attribute:"see_also", value:"http://www.securityfocus.com/archive/1/532207/30/0/threaded");
  script_set_attribute(attribute:"see_also", value:"https://helpx.adobe.com/security/products/acrobat/apsb14-15.html");
  script_set_attribute(attribute:"solution", value:"Upgrade to Adobe Acrobat 10.1.10 / 11.0.07 or later.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2014/03/27");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/05/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/05/14");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:adobe:acrobat");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"MacOS X Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.");

  script_dependencies("macosx_adobe_acrobat_installed.nbin");
  script_require_keys("Host/local_checks_enabled", "Host/MacOSX/Version", "MacOSX/Adobe_Acrobat/Installed");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");

get_kb_item_or_exit("Host/local_checks_enabled");

os = get_kb_item("Host/MacOSX/Version");
if (!os) audit(AUDIT_OS_NOT, "Mac OS X");

kb_base = "MacOSX/Adobe_Acrobat";
get_kb_item_or_exit(kb_base+"/Installed");

versions = get_kb_list(kb_base+"/*/Version");
if (isnull(versions)) audit(AUDIT_KB_MISSING , kb_base + '/*/Version');

info = "";
info2 = "";
vuln = 0;

foreach install (sort(keys(versions)))
{
  path = "/Applications" + (install - kb_base - "/Version");

  version = versions[install];

  ver = split(version, sep:".", keep:FALSE);
  for (i=0; i<max_index(ver); i++)
    ver[i] = int(ver[i]);

  if (
    (ver[0] == 10 && ver[1] < 1) ||
    (ver[0] == 10 && ver[1] == 1 && ver[2] < 10) ||
    (ver[0] == 11 && ver[1] == 0 && ver[2] < 7)
  )
  {
    vuln++;
    info +=
      '\n  Path              : ' + path +
      '\n  Installed version : ' + version +
      '\n  Fixed version     : 10.1.10 / 11.0.07\n' +
      '\n';
  }
  else info2 += " and " + version;
}

if (info)
{
  if (report_verbosity > 0) security_hole(port:0, extra:info);
  else security_hole(0);

  exit(0);
}

if (info2)
{
 info2 -= " and ";
  if (" and " >< info2) be = "are";
  else be = "is";

  exit(0, "The host is not affected since Adobe Acrobat " + info2 + " " + be + " installed.");
}
else exit(1, "Unexpected error - 'info2' is empty.");
VendorProductVersionCPE
adobeacrobatcpe:/a:adobe:acrobat

Related

nessus 3
securityvulns 3
openvas 6
cvelist 11
cve 11
prion 11
ubuntucve 11
checkpoint_advisories 12
zdi 3
seebug 2
kaspersky 1
kitploit 1
nessus
nessus
Adobe Acrobat < 10.1.10 / 11.0.07 Multiple Vulnerabilities (APSB14-15)
2014-05-14 00:00:00
Adobe Reader < 10.1.10 / 11.0.07 Multiple Vulnerabilities (APSB14-15)
2014-05-14 00:00:00
Adobe Reader < 10.1.10 / 11.0.07 Multiple Vulnerabilities (APSB14-15) (Mac OS X)
2014-05-14 00:00:00
securityvulns
securityvulns
Adobe Reader / Acrobat multiple security vulnerabilities
2014-06-09 00:00:00
VUPEN Security Research - Adobe Acrobat &amp; Reader XI-X Barcode Heap Overflow &#40;Pwn2Own&#41;
2014-05-29 00:00:00
VUPEN Security Research - Adobe Acrobat &amp; Reader XI-X &quot;AcroBroker&quot; Sandbox Bypass &#40;Pwn2Own&#41;
2014-06-09 00:00:00
openvas
openvas
Adobe Acrobat Multiple Vulnerabilities - 01 (May 2014) - Mac OS X
2014-05-22 00:00:00
Adobe Acrobat Multiple Vulnerabilities - 01 (May 2014) - Windows
2014-05-22 00:00:00
Adobe Reader Multiple Vulnerabilities - 01 (May 2014) - Mac OS X
2014-05-22 00:00:00
cvelist
cvelist
CVE-2014-0522
2014-05-14 10:00:00
CVE-2014-0523
2014-05-14 10:00:00
CVE-2014-0526
2014-05-14 10:00:00
cve
cve
CVE-2014-0522
2014-05-14 11:13:00
CVE-2014-0526
2014-05-14 11:13:00
CVE-2014-0523
2014-05-14 11:13:00
prion
prion
Memory corruption
2014-05-14 11:13:00
Memory corruption
2014-05-14 11:13:00
Memory corruption
2014-05-14 11:13:00
ubuntucve
ubuntucve
CVE-2014-0526
2014-05-14 00:00:00
CVE-2014-0524
2014-05-14 00:00:00
CVE-2014-0523
2014-05-14 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Acrobat And Reader Use-After-Free (APSB14-15; CVE-2014-0527)
2014-05-19 00:00:00
Adobe Acrobat and Reader Memory Corruption (APSB14-15: CVE-2014-0528)
2014-07-10 00:00:00
Adobe Acrobat and Reader Memory Corruption (APSB14-15: CVE-2014-0526)
2014-05-27 00:00:00
zdi
zdi
Adobe Reader AcroPDF messageHandler Use-After-Free Remote Code Execution Vulnerability
2014-05-13 00:00:00
(Pwn2Own) Adobe Reader PDF417 Barcode Parsing Integer Overflow Remote Code Execution Vulnerability
2014-05-19 00:00:00
(Pwn2Own) Adobe Reader Sandbox Bypass Remote Code Execution Vulnerability
2014-05-19 00:00:00
seebug
seebug
Adobe Reader 任意代码执行漏洞
2014-03-28 00:00:00
Adobe Reader绕过PDF沙盒保护机制漏洞
2014-03-28 00:00:00
kaspersky
kaspersky
KLA10004 Multiple Adobe Acrobat & Reader vulnerabilities
2014-05-13 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00
JSON
Related for MACOSX_ADOBE_ACROBAT_APSB14-15.NASL
nessus3securityvulns3openvas6cvelist11cve11prion11ubuntucve11checkpoint_advisories12zdi3seebug2kaspersky1kitploit1