Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 Tenable Network Security, Inc.SUSE_ACROREAD-6588.NASL
HistoryOct 30, 2009 - 12:00 a.m.

openSUSE 10 Security Update : acroread (acroread-6588)

2009-10-3000:00:00
This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.
www.tenable.com
16
JSON

Adobe Reader has been updated to fix numerous security vulnerabilities. Some of the vulnerabilities allowed attackers to potentially execute arbitrary code on the victim’s system via specially crafted PDF files.

(CVE-2007-0048, CVE-2007-0045, CVE-2009-2564,CVE-2009-2979, CVE-2009-2980, CVE-2009-2981, CVE-2009-2982, CVE-2009-2983, CVE-2009-2985, CVE-2009-2986, CVE-2009-2988, CVE-2009-2990, CVE-2009-2991, CVE-2009-2992, CVE-2009-2993, CVE-2009-2994, CVE-2009-2996, CVE-2009-2997, CVE-2009-2998, CVE-2009-3431, CVE-2009-3458, CVE-2009-3459, CVE-2009-3462)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update acroread-6588.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(42318);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-0045", "CVE-2007-0048", "CVE-2009-2564", "CVE-2009-2979", "CVE-2009-2980", "CVE-2009-2981", "CVE-2009-2982", "CVE-2009-2983", "CVE-2009-2985", "CVE-2009-2986", "CVE-2009-2988", "CVE-2009-2990", "CVE-2009-2991", "CVE-2009-2992", "CVE-2009-2993", "CVE-2009-2994", "CVE-2009-2996", "CVE-2009-2997", "CVE-2009-2998", "CVE-2009-3431", "CVE-2009-3458", "CVE-2009-3459", "CVE-2009-3462");

  script_name(english:"openSUSE 10 Security Update : acroread (acroread-6588)");
  script_summary(english:"Check for the acroread-6588 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Adobe Reader has been updated to fix numerous security
vulnerabilities. Some of the vulnerabilities allowed attackers to
potentially execute arbitrary code on the victim's system via
specially crafted PDF files.

(CVE-2007-0048, CVE-2007-0045, CVE-2009-2564,CVE-2009-2979,
CVE-2009-2980, CVE-2009-2981, CVE-2009-2982, CVE-2009-2983,
CVE-2009-2985, CVE-2009-2986, CVE-2009-2988, CVE-2009-2990,
CVE-2009-2991, CVE-2009-2992, CVE-2009-2993, CVE-2009-2994,
CVE-2009-2996, CVE-2009-2997, CVE-2009-2998, CVE-2009-3431,
CVE-2009-3458, CVE-2009-3459, CVE-2009-3462)"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected acroread package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Adobe FlateDecode Stream Predictor 02 Integer Overflow');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_cwe_id(20, 119, 189, 264, 310, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/10/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/10/30");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686)$") audit(AUDIT_ARCH_NOT, "i586 / i686", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE10.3", reference:"acroread-8.1.7-0.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "acroread");
}
VendorProductVersionCPE
novellopensuseacroreadp-cpe:/a:novell:opensuse:acroread
novellopensuse10.3cpe:/o:novell:opensuse:10.3

References

Related

openvas 23
gentoo 2
nessus 29
seebug 4
suse 2
redhat 3
securityvulns 10
ubuntucve 21
prion 25
cve 25
checkpoint_advisories 17
chrome 1
packetstorm 6
exploitpack 1
saint 12
cert 2
zdi 1
kaspersky 1
exploitdb 1
canvas 1
attackerkb 1
mozilla 1
debian 1
openvas
openvas
SuSE Security Advisory SUSE-SA:2009:049 (acroread, acroread_ja)
2009-10-27 00:00:00
Gentoo Security Advisory GLSA 200910-03 (acroread)
2009-10-27 00:00:00
Gentoo Security Advisory GLSA 200910-03 (acroread)
2009-10-27 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2009-10-25 00:00:00
Adobe Acrobat Reader: Multiple vulnerabilities
2007-01-22 00:00:00
nessus
nessus
GLSA-200910-03 : Adobe Reader: Multiple vulnerabilities
2009-10-26 00:00:00
SuSE 10 Security Update : acroread_ja (ZYPP Patch Number 6584)
2011-01-27 00:00:00
SuSE 10 Security Update : acroread_ja (ZYPP Patch Number 6585)
2011-01-27 00:00:00
seebug
seebug
Adobe Reader: Multiple vulnerabilities
2009-10-27 00:00:00
Adobe Acrobat Reader 7-9 U3D BoF
2009-10-27 00:00:00
Adobe Acrobat Reader 7-9 - U3D BoF
2014-07-01 00:00:00
suse
suse
remote code execution in acroread, acroread_ja
2009-10-26 13:17:31
remote code execution in acroread
2007-01-22 18:37:17
redhat
redhat
(RHSA-2009:1499) Critical: acroread security update
2009-10-14 00:00:00
(RHSA-2007:0021) Critical: Adobe Acrobat Reader security update
2007-01-22 00:00:00
(RHSA-2007:0017) Critical: Adobe Acrobat Reader security update
2007-01-11 00:00:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2009-10-19 00:00:00
VUPEN Security - Adobe Acrobat and Reader U3D Filter Code Execution Vulnerabilities
2009-10-17 00:00:00
n.runs-SA-2009.007 - Adobe Acrobat - Invalid pointer write could lead to arbitrary code execution
2009-10-17 00:00:00
ubuntucve
ubuntucve
CVE-2009-3458
2009-10-19 00:00:00
CVE-2009-2996
2009-10-19 00:00:00
CVE-2009-2985
2009-10-19 00:00:00
prion
prion
Input validation
2009-10-19 22:30:00
Input validation
2009-10-19 22:30:00
Memory corruption
2009-10-19 22:30:00
cve
cve
CVE-2009-2998
2009-10-19 22:30:00
CVE-2009-2996
2009-10-19 22:30:00
CVE-2009-2985
2009-10-19 22:30:00
checkpoint_advisories
checkpoint_advisories
Adobe Reader Plugin Malformed URL Cross-Site Scripting (APSB07-01; CVE-2007-0045; CVE-2007-0048)
2010-01-12 00:00:00
Adobe Reader JPEG2000 Quantization Component Memory Corruption (APSB09-15; CVE-2009-2994)
2009-10-14 00:00:00
Adobe Reader PDF Document Metadata XML Bomb (APSB09-15; CVE-2009-2979)
2009-10-14 00:00:00
chrome
chrome
Stable, Beta update: Yahoo! Mail and Security Fixes
2009-01-28 00:00:00
packetstorm
packetstorm
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
2009-12-31 00:00:00
Adobe Acrobat Reader Array Overrun
2009-10-27 00:00:00
Adobe U3D CLODProgressiveMeshDeclaration Array Overrun
2009-12-31 00:00:00
exploitpack
exploitpack
Adobe Acrobat Reader 7 9 - U3D Buffer Overflow
2009-10-27 00:00:00
saint
saint
Adobe Acrobat Reader U3D CLODMeshContinuation Code Execution
2009-11-20 00:00:00
Adobe Acrobat Reader U3D CLODMeshContinuation Code Execution
2009-11-20 00:00:00
Adobe Acrobat Reader U3D CLODMeshContinuation Code Execution
2009-11-20 00:00:00
cert
cert
Adobe Acrobat and Reader contain vulnerabilities in multiple Document Object JavaScript methods
2009-10-13 00:00:00
Adobe Acrobat Plug-In cross domain violation
2007-01-03 00:00:00
zdi
zdi
Adobe Reader Compact Font Format Malformed Index Memory Corruption Vulnerability
2009-10-13 00:00:00
kaspersky
kaspersky
KLA10032 Multiple vulnerabilities in Adobe Acrobat & Reader
2007-01-09 00:00:00
exploitdb
exploitdb
Adobe Acrobat Reader 7 < 9 - U3D Buffer Overflow
2009-10-27 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_U3D_MESH
2010-01-13 19:30:00
attackerkb
attackerkb
CVE-2009-3953
2010-01-13 00:00:00
mozilla
mozilla
Improvements to help protect against Cross-Site Scripting attacks β€” Mozilla
2007-02-23 00:00:00
debian
debian
[SECURITY] [DSA 1336-1] New mozilla-firefox packages fix several vulnerabilities
2007-07-22 00:00:00
JSON
Related for SUSE_ACROREAD-6588.NASL
openvas23gentoo2nessus29seebug4suse2redhat3securityvulns10ubuntucve21prion25cve25checkpoint_advisories17chrome1packetstorm6exploitpack1saint12cert2zdi1kaspersky1exploitdb1canvas1attackerkb1mozilla1debian1