This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_11_2_ACROREAD-110302.NASLopenSUSE Security Update : acroread (openSUSE-SU-2011:0156-1)
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.852 High
EPSS
Percentile
98.6%
Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. acroread was updated to version 9.4.2 to address the issues.
(CVE-2010-4091, CVE-2011-0562, CVE-2011-0563, CVE-2011-0565, CVE-2011-0566, CVE-2011-0567, CVE-2011-0570, CVE-2011-0585, CVE-2011-0586, CVE-2011-0587, CVE-2011-0588, CVE-2011-0589, CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0594, CVE-2011-0595, CVE-2011-0596, CVE-2011-0598, CVE-2011-0599, CVE-2011-0600, CVE-2011-0602, CVE-2011-0603, CVE-2011-0604, CVE-2011-0606, CVE-2011-0558, CVE-2011-0559, CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572, CVE-2011-0573, CVE-2011-0574, CVE-2011-0575, CVE-2011-0577, CVE-2011-0578, CVE-2011-0607, CVE-2011-0608)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update acroread-4078.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(53693);
script_version("1.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2010-4091", "CVE-2011-0558", "CVE-2011-0559", "CVE-2011-0560", "CVE-2011-0561", "CVE-2011-0562", "CVE-2011-0563", "CVE-2011-0565", "CVE-2011-0566", "CVE-2011-0567", "CVE-2011-0570", "CVE-2011-0571", "CVE-2011-0572", "CVE-2011-0573", "CVE-2011-0574", "CVE-2011-0575", "CVE-2011-0577", "CVE-2011-0578", "CVE-2011-0585", "CVE-2011-0586", "CVE-2011-0587", "CVE-2011-0588", "CVE-2011-0589", "CVE-2011-0590", "CVE-2011-0591", "CVE-2011-0592", "CVE-2011-0593", "CVE-2011-0594", "CVE-2011-0595", "CVE-2011-0596", "CVE-2011-0598", "CVE-2011-0599", "CVE-2011-0600", "CVE-2011-0602", "CVE-2011-0603", "CVE-2011-0604", "CVE-2011-0606", "CVE-2011-0607", "CVE-2011-0608");
script_name(english:"openSUSE Security Update : acroread (openSUSE-SU-2011:0156-1)");
script_summary(english:"Check for the acroread-4078 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Specially crafted PDF documents could crash acroread or lead to
execution of arbitrary code. acroread was updated to version 9.4.2 to
address the issues.
(CVE-2010-4091, CVE-2011-0562, CVE-2011-0563, CVE-2011-0565,
CVE-2011-0566, CVE-2011-0567, CVE-2011-0570, CVE-2011-0585,
CVE-2011-0586, CVE-2011-0587, CVE-2011-0588, CVE-2011-0589,
CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593,
CVE-2011-0594, CVE-2011-0595, CVE-2011-0596, CVE-2011-0598,
CVE-2011-0599, CVE-2011-0600, CVE-2011-0602, CVE-2011-0603,
CVE-2011-0604, CVE-2011-0606, CVE-2011-0558, CVE-2011-0559,
CVE-2011-0560, CVE-2011-0561, CVE-2011-0571, CVE-2011-0572,
CVE-2011-0573, CVE-2011-0574, CVE-2011-0575, CVE-2011-0577,
CVE-2011-0578, CVE-2011-0607, CVE-2011-0608)"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=669550"
);
script_set_attribute(
attribute:"see_also",
value:"https://lists.opensuse.org/opensuse-updates/2011-03/msg00003.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected acroread packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-cmaps");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-ja");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-ko");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-zh_CN");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-zh_TW");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.2");
script_set_attribute(attribute:"patch_publication_date", value:"2011/03/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/05/05");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686)$") audit(AUDIT_ARCH_NOT, "i586 / i686", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE11.2", reference:"acroread-9.4.2-0.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"acroread-cmaps-9.4.2-0.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"acroread-fonts-ja-9.4.2-0.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"acroread-fonts-ko-9.4.2-0.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"acroread-fonts-zh_CN-9.4.2-0.2.1") ) flag++;
if ( rpm_check(release:"SUSE11.2", reference:"acroread-fonts-zh_TW-9.4.2-0.2.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "acroread / acroread-cmaps / acroread-fonts-ja / acroread-fonts-ko / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | acroread | p-cpe:/a:novell:opensuse:acroread |
| novell | opensuse | acroread-cmaps | p-cpe:/a:novell:opensuse:acroread-cmaps |
| novell | opensuse | acroread-fonts-ja | p-cpe:/a:novell:opensuse:acroread-fonts-ja |
| novell | opensuse | acroread-fonts-ko | p-cpe:/a:novell:opensuse:acroread-fonts-ko |
| novell | opensuse | acroread-fonts-zh_cn | p-cpe:/a:novell:opensuse:acroread-fonts-zh_cn |
| novell | opensuse | acroread-fonts-zh_tw | p-cpe:/a:novell:opensuse:acroread-fonts-zh_tw |
| novell | opensuse | 11.2 | cpe:/o:novell:opensuse:11.2 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4091
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0558
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0559
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0560
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0561
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0562
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0563
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0565
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0566
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0567
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0570
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0571
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0572
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0573
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0574
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0575
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0577
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0578
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0585
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0586
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0587
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0588
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0589
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0590
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0591
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0592
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0593
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0594
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0595
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0596
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0598
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0599
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0600
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0602
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0603
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0604
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0606
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0607
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0608
bugzilla.novell.com/show_bug.cgi?id=669550
lists.opensuse.org/opensuse-updates/2011-03/msg00003.html
Related
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.852 High
EPSS
Percentile
98.6%