Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 Tenable Network Security, Inc.SUSE_11_ACROREAD-100418.NASL
HistoryDec 02, 2010 - 12:00 a.m.

SuSE 11 Security Update : Acrobat Reader (SAT Patch Number 2320)

2010-12-0200:00:00
This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.
www.tenable.com
13
JSON

Specially crafted PDF documents could crash acroread or even lead to execution of arbitrary code. (CVE-2010-0190 / CVE-2010-0191 / CVE-2010-0192 / CVE-2010-0193 / CVE-2010-0194 / CVE-2010-0195 / CVE-2010-0196 / CVE-2010-0197 / CVE-2010-0198 / CVE-2010-0199 / CVE-2010-0201 / CVE-2010-0202 / CVE-2010-0203 / CVE-2010-0204 / CVE-2010-1241)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(50881);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2010-0190", "CVE-2010-0191", "CVE-2010-0192", "CVE-2010-0193", "CVE-2010-0194", "CVE-2010-0195", "CVE-2010-0196", "CVE-2010-0197", "CVE-2010-0198", "CVE-2010-0199", "CVE-2010-0201", "CVE-2010-0202", "CVE-2010-0203", "CVE-2010-0204", "CVE-2010-1241");

  script_name(english:"SuSE 11 Security Update : Acrobat Reader (SAT Patch Number 2320)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Specially crafted PDF documents could crash acroread or even lead to
execution of arbitrary code. (CVE-2010-0190 / CVE-2010-0191 /
CVE-2010-0192 / CVE-2010-0193 / CVE-2010-0194 / CVE-2010-0195 /
CVE-2010-0196 / CVE-2010-0197 / CVE-2010-0198 / CVE-2010-0199 /
CVE-2010-0201 / CVE-2010-0202 / CVE-2010-0203 / CVE-2010-0204 /
CVE-2010-1241)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=595108"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0190.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0191.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0192.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0193.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0194.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0195.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0196.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0197.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0198.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0199.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0201.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0202.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0203.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-0204.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2010-1241.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 2320.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:acroread");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:acroread-cmaps");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:acroread-fonts-ja");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:acroread-fonts-ko");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:acroread-fonts-zh_CN");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:acroread-fonts-zh_TW");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/04/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/12/02");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (pl) audit(AUDIT_OS_NOT, "SuSE 11.0");


flag = 0;
if (rpm_check(release:"SLED11", sp:0, cpu:"i586", reference:"acroread-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"i586", reference:"acroread-cmaps-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"i586", reference:"acroread-fonts-ja-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"i586", reference:"acroread-fonts-ko-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"i586", reference:"acroread-fonts-zh_CN-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"i586", reference:"acroread-fonts-zh_TW-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"x86_64", reference:"")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"x86_64", reference:"acroread-cmaps-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"x86_64", reference:"acroread-fonts-ja-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"x86_64", reference:"acroread-fonts-ko-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"x86_64", reference:"acroread-fonts-zh_CN-9.3.2-0.1.1")) flag++;
if (rpm_check(release:"SLED11", sp:0, cpu:"x86_64", reference:"acroread-fonts-zh_TW-9.3.2-0.1.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:acroread
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:acroread-cmaps
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:acroread-fonts-ja
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:acroread-fonts-ko
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:acroread-fonts-zh_cn
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:acroread-fonts-zh_tw
novellsuse_linux11cpe:/o:novell:suse_linux:11

References

Related

securityvulns 7
openvas 8
nessus 11
redhat 1
suse 1
prion 16
ubuntucve 15
cve 16
gentoo 1
checkpoint_advisories 6
zdi 1
symantec 2
kitploit 1
securityvulns
securityvulns
Security update available for Adobe Reader and Acrobat
2010-04-19 00:00:00
Adobe Acrobat and Reader multiple security vulnerabilities
2010-04-19 00:00:00
VUPEN Security Research - Adobe Acrobat and Reader GIF Data Buffer Overflow Vulnerability
2010-04-19 00:00:00
openvas
openvas
SuSE Update for acroread SUSE-SA:2010:022
2010-04-29 00:00:00
Adobe Acrobat and Reader PDF Handling Multiple Vulnerabilities - Windows
2010-04-16 00:00:00
SuSE Update for acroread SUSE-SA:2010:022
2010-04-29 00:00:00
nessus
nessus
Adobe Acrobat < 9.3.2 / 8.2.2 Multiple Vulnerabilities (APSB10-09)
2010-04-13 00:00:00
SuSE 10 Security Update : acroread_ja (ZYPP Patch Number 6995)
2011-01-27 00:00:00
SuSE 11 Security Update : acroread_ja (SAT Patch Number 2322)
2010-12-02 00:00:00
redhat
redhat
(RHSA-2010:0349) Critical: acroread security update
2010-04-14 00:00:00
suse
suse
remote code execution in acroread
2010-04-21 14:05:14
prion
prion
Memory corruption
2010-04-14 16:00:00
Buffer overflow
2010-04-14 16:00:00
Memory corruption
2010-04-14 16:00:00
ubuntucve
ubuntucve
CVE-2010-0194
2010-04-14 00:00:00
CVE-2010-0197
2010-04-14 00:00:00
CVE-2010-0203
2010-04-14 00:00:00
cve
cve
CVE-2010-0203
2010-04-14 16:00:00
CVE-2010-0202
2010-04-14 16:00:00
CVE-2010-0199
2010-04-14 16:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2010-09-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Reader Overly Complex U3D Base Mesh Memory Corruption (APSB10-09; CVE-2010-0194)
2010-04-14 00:00:00
Adobe Reader Malformed RichMedia Annotation (APSB10-09; CVE-2010-0197)
2010-04-14 00:00:00
Adobe Reader Postscript Conversion Memory Corruption (APSB10-09; CVE-2010-0192)
2010-04-14 00:00:00
zdi
zdi
Adobe Reader TrueType Font Handling Remote Code Execution Vulnerability
2010-04-13 00:00:00
symantec
symantec
Adobe Acrobat and Reader CVE-2010-0195 Embedded Font Handling Remote Code Execution Vulnerability
2010-04-13 00:00:00
Adobe Acrobat and Reader CVE-2010-1241 'CoolType.dll' Remote Code Execution Vulnerability
2010-04-13 00:00:00
kitploit
kitploit
Radamsa - A General-Purpose Fuzzer
2024-03-25 11:30:00
JSON
Related for SUSE_11_ACROREAD-100418.NASL
securityvulns7openvas8nessus11redhat1suse1prion16ubuntucve15cve16gentoo1checkpoint_advisories6zdi1symantec2kitploit1