Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 Tenable Network Security, Inc.SUSE9_11433.NASL
HistorySep 24, 2009 - 12:00 a.m.

SuSE9 Security Update : acroread (YOU Patch Number 11433)

2009-09-2400:00:00
This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.
www.tenable.com
15
JSON

The Adobe Acrobat Reader has been updated to version 7.0.9.

For SUSE Linux Enterprise Server 9 this version now includes its own GLIB2, ATK, PANGO and GTK2 libraries, since Acroread 7.0.x requires a minimum level of GTK2 2.4.

This update also includes following security fixes :

  • A memory corruption problem was fixed in Adobe Acrobat Reader can potentially lead to code execution.
    (CVE-2006-5857)

  • Universal cross-site request forgery (CSRF) problems were fixed in the Acrobat Reader plugin which could be exploited by remote attackers to conduct CSRF attacks using any site that is providing PDFs. (CVE-2007-0044)

  • Cross-site scripting problems in the Acrobat Reader plugin were fixed, which could be exploited by remote attackers to conduct XSS attacks against any site that is providing PDFs. (CVE-2007-0045)

  • A double free problem in the Acrobat Reader plugin was fixed which could be used by remote attackers to potentially execute arbitrary code. Note that all platforms using Adobe Reader currently have counter measures against such attack where it will just cause a controlled abort(). (CVE-2007-0046)

  • CVE-2007-0047 and CVE-2007-0048 affect only Microsoft Windows and Internet Explorer.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text description of this plugin is (C) Novell, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(41117);
  script_version("1.18");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2006-5857", "CVE-2007-0044", "CVE-2007-0045", "CVE-2007-0046");

  script_name(english:"SuSE9 Security Update : acroread (YOU Patch Number 11433)");
  script_summary(english:"Checks rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 9 host is missing a security-related patch."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The Adobe Acrobat Reader has been updated to version 7.0.9.

For SUSE Linux Enterprise Server 9 this version now includes its own
GLIB2, ATK, PANGO and GTK2 libraries, since Acroread 7.0.x requires a
minimum level of GTK2 2.4.

This update also includes following security fixes :

  - A memory corruption problem was fixed in Adobe Acrobat
    Reader can potentially lead to code execution.
    (CVE-2006-5857)

  - Universal cross-site request forgery (CSRF) problems
    were fixed in the Acrobat Reader plugin which could be
    exploited by remote attackers to conduct CSRF attacks
    using any site that is providing PDFs. (CVE-2007-0044)

  - Cross-site scripting problems in the Acrobat Reader
    plugin were fixed, which could be exploited by remote
    attackers to conduct XSS attacks against any site that
    is providing PDFs. (CVE-2007-0045)

  - A double free problem in the Acrobat Reader plugin was
    fixed which could be used by remote attackers to
    potentially execute arbitrary code. Note that all
    platforms using Adobe Reader currently have counter
    measures against such attack where it will just cause a
    controlled abort(). (CVE-2007-0046)

  - CVE-2007-0047 and CVE-2007-0048 affect only Microsoft
    Windows and Internet Explorer."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2006-5857.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2007-0044.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2007-0045.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2007-0046.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2007-0047/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2007-0048.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply YOU patch number 11433.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_cwe_id(352, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:suse:suse_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/02/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/09/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/SuSE/release")) exit(0, "The host is not running SuSE.");
if (!get_kb_item("Host/SuSE/rpm-list")) exit(1, "Could not obtain the list of installed packages.");

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) exit(1, "Failed to determine the architecture type.");
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") exit(1, "Local checks for SuSE 9 on the '"+cpu+"' architecture have not been implemented.");


flag = 0;
if (rpm_check(release:"SUSE9", reference:"acroread-7.0.9-2.5")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else exit(0, "The host is not affected.");
VendorProductVersionCPE
susesuse_linuxcpe:/o:suse:suse_linux

Related

nessus 29
openvas 17
suse 2
gentoo 2
kaspersky 1
checkpoint_advisories 3
securityvulns 4
redhat 3
chrome 1
cve 7
cvelist 7
cert 2
prion 6
ubuntucve 3
mozilla 1
seebug 1
debian 1
nessus
nessus
openSUSE 10 Security Update : acroread (acroread-2506)
2007-10-17 00:00:00
Adobe Reader < 6.0.6 / 7.0.9 Multiple Vulnerabilities
2007-01-10 00:00:00
Adobe Acrobat < 6.0.6 / 7.0.9 Multiple Vulnerabilities
2009-08-28 00:00:00
openvas
openvas
SuSE Update for acroread SUSE-SA:2007:011
2009-01-28 00:00:00
SLES9: Security update for acroread
2009-10-10 00:00:00
SLES9: Security update for acroread
2009-10-10 00:00:00
suse
suse
remote code execution in acroread
2007-01-22 18:37:17
remote code execution in acroread, acroread_ja
2009-10-26 13:17:31
gentoo
gentoo
Adobe Acrobat Reader: Multiple vulnerabilities
2007-01-22 00:00:00
Adobe Reader: Multiple vulnerabilities
2009-10-25 00:00:00
kaspersky
kaspersky
KLA10032 Multiple vulnerabilities in Adobe Acrobat & Reader
2007-01-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Multiple Adobe Acrobat Vulnerabilities
2007-01-21 00:00:00
Adobe Reader Plugin Malformed URL Cross-Site Scripting (APSB07-01; CVE-2007-0045; CVE-2007-0048)
2010-01-12 00:00:00
Adobe Acrobat Reader Plugin Crafted URL Double Free (CVE-2007-0046)
2010-01-24 00:00:00
securityvulns
securityvulns
Adobe reader plugin PDF files universal crossite scripting
2007-01-04 00:00:00
[Full-disclosure] Adobe Reader Remote Heap Memory Corruption - Subroutine Pointer Overwrite
2007-01-10 00:00:00
Adobe Reader buffer overflow
2007-01-10 00:00:00
redhat
redhat
(RHSA-2007:0017) Critical: Adobe Acrobat Reader security update
2007-01-11 00:00:00
(RHSA-2007:0021) Critical: Adobe Acrobat Reader security update
2007-01-22 00:00:00
(RHSA-2008:0144) Critical: acroread security update
2008-02-22 00:00:00
chrome
chrome
Stable, Beta update: Yahoo! Mail and Security Fixes
2009-01-28 00:00:00
cve
cve
CVE-2006-5857
2006-12-31 05:00:00
CVE-2007-0044
2007-01-03 21:28:00
CVE-2007-0046
2007-01-03 21:28:00
cvelist
cvelist
CVE-2006-5857
2007-01-10 02:00:00
CVE-2007-0046
2007-01-03 20:00:00
CVE-2007-0048
2007-01-03 20:00:00
cert
cert
Adobe Acrobat allows pointer overwrite via specially crafted PDF file
2007-01-19 00:00:00
Adobe Acrobat Plug-In cross domain violation
2007-01-03 00:00:00
prion
prion
Cross site request forgery (csrf)
2007-01-03 21:28:00
Cross site scripting
2007-01-03 21:28:00
Crlf injection
2007-01-03 21:28:00
ubuntucve
ubuntucve
CVE-2007-0046
2007-01-03 00:00:00
CVE-2007-0045
2007-01-03 00:00:00
CVE-2007-1199
2007-03-02 00:00:00
mozilla
mozilla
Improvements to help protect against Cross-Site Scripting attacks — Mozilla
2007-02-23 00:00:00
seebug
seebug
Adobe Reader: Multiple vulnerabilities
2009-10-27 00:00:00
debian
debian
[SECURITY] [DSA 1336-1] New mozilla-firefox packages fix several vulnerabilities
2007-07-22 00:00:00
JSON
Related for SUSE9_11433.NASL
nessus29openvas17suse2gentoo2kaspersky1checkpoint_advisories3securityvulns4redhat3chrome1cve7cvelist7cert2prion6ubuntucve3mozilla1seebug1debian1