Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2022 Tenable Network Security, Inc.SUSE_ACROREAD-7087.NASL
HistoryJan 27, 2011 - 12:00 a.m.

SuSE 10 Security Update : acroread (ZYPP Patch Number 7087)

2011-01-2700:00:00
This script is Copyright (C) 2011-2022 Tenable Network Security, Inc.
www.tenable.com
31
JSON

Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code. The fixed security issues have been tracked as :

  • CVE-2010-1297

  • CVE-2010-1240

  • CVE-2010-1285

  • CVE-2010-1295

  • CVE-2010-2168

  • CVE-2010-2201

  • CVE-2010-2202

  • CVE-2010-2203

  • CVE-2010-2204

  • CVE-2010-2205

  • CVE-2010-2206

  • CVE-2010-2207

  • CVE-2010-2208

  • CVE-2010-2209

  • CVE-2010-2210

  • CVE-2010-2211

  • CVE-2010-2212

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The text description of this plugin is (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(51701);
  script_version("1.33");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/06/08");

  script_cve_id(
    "CVE-2010-1240",
    "CVE-2010-1285",
    "CVE-2010-1295",
    "CVE-2010-1297",
    "CVE-2010-2168",
    "CVE-2010-2201",
    "CVE-2010-2202",
    "CVE-2010-2203",
    "CVE-2010-2204",
    "CVE-2010-2205",
    "CVE-2010-2206",
    "CVE-2010-2207",
    "CVE-2010-2208",
    "CVE-2010-2209",
    "CVE-2010-2210",
    "CVE-2010-2211",
    "CVE-2010-2212"
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/06/22");

  script_name(english:"SuSE 10 Security Update : acroread (ZYPP Patch Number 7087)");

  script_set_attribute(attribute:"synopsis", value:
"The remote SuSE 10 host is missing a security-related patch.");
  script_set_attribute(attribute:"description", value:
"Specially crafted PDF documents could crash acroread or lead to
execution of arbitrary code. The fixed security issues have been
tracked as :

  - CVE-2010-1297

  - CVE-2010-1240

  - CVE-2010-1285

  - CVE-2010-1295

  - CVE-2010-2168

  - CVE-2010-2201

  - CVE-2010-2202

  - CVE-2010-2203

  - CVE-2010-2204

  - CVE-2010-2205

  - CVE-2010-2206

  - CVE-2010-2207

  - CVE-2010-2208

  - CVE-2010-2209

  - CVE-2010-2210

  - CVE-2010-2211

  - CVE-2010-2212");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-1240.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-1285.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-1295.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-1297.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2168.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2201.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2202.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2203.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2204.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2205.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2206.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2207.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2208.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2209.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2210.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2211.html");
  script_set_attribute(attribute:"see_also", value:"http://support.novell.com/security/cve/CVE-2010-2212.html");
  script_set_attribute(attribute:"solution", value:
"Apply ZYPP patch number 7087.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Adobe Flash Player "newfunction" Invalid Pointer Use');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_exploithub", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");
  script_set_attribute(attribute:"exploithub_sku", value:"EH-11-164");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/07/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/01/27");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:suse:suse_linux");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2011-2022 Tenable Network Security, Inc.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/SuSE/release")) exit(0, "The host is not running SuSE.");
if (!get_kb_item("Host/SuSE/rpm-list")) exit(1, "Could not obtain the list of installed packages.");

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) exit(1, "Failed to determine the architecture type.");
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") exit(1, "Local checks for SuSE 10 on the '"+cpu+"' architecture have not been implemented.");


flag = 0;
if (rpm_check(release:"SLED10", sp:3, reference:"acroread-9.3.3-0.4.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, reference:"acroread-cmaps-9.3.3-0.4.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, reference:"acroread-fonts-ja-9.3.3-0.4.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, reference:"acroread-fonts-ko-9.3.3-0.4.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, reference:"acroread-fonts-zh_CN-9.3.3-0.4.1")) flag++;
if (rpm_check(release:"SLED10", sp:3, reference:"acroread-fonts-zh_TW-9.3.3-0.4.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else exit(0, "The host is not affected.");
VendorProductVersionCPE
susesuse_linuxcpe:/o:suse:suse_linux

References

Related

nessus 33
openvas 25
suse 3
redhat 3
prion 17
ubuntucve 16
cve 17
securityvulns 13
checkpoint_advisories 7
gentoo 2
packetstorm 7
seebug 7
exploitpack 5
saint 4
attackerkb 1
canvas 1
threatpost 2
metasploit 3
cert 1
zeroscience 1
zdi 1
cisa_kev 1
exploitdb 7
thn 1
securelist 1
freebsd 1
nessus
nessus
SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2637 / 2641)
2010-12-02 00:00:00
SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2639 / 2640)
2010-12-02 00:00:00
openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)
2010-07-09 00:00:00
openvas
openvas
SuSE Update for acroread SUSE-SA:2010:029
2010-07-12 00:00:00
Adobe Acrobat and Reader Multiple Vulnerabilities (Jul 2010) - Windows
2010-07-12 00:00:00
Adobe Reader Multiple Vulnerabilities (Jul 2010) - Linux
2010-07-12 00:00:00
suse
suse
remote code execution in acroread
2010-07-08 11:59:38
remote code execution in acroread
2010-09-01 13:59:57
remote code execution in flash-player
2010-06-11 17:44:20
redhat
redhat
(RHSA-2010:0503) Critical: acroread security update
2010-06-30 00:00:00
(RHSA-2010:0464) Critical: flash-plugin security update
2010-06-11 00:00:00
(RHSA-2010:0470) Critical: flash-plugin security update
2010-06-14 00:00:00
prion
prion
Memory corruption
2010-06-30 18:30:00
Buffer overflow
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
ubuntucve
ubuntucve
CVE-2010-1295
2010-06-30 00:00:00
CVE-2010-2207
2010-06-30 00:00:00
CVE-2010-2210
2010-06-30 00:00:00
cve
cve
CVE-2010-2202
2010-06-30 18:30:00
CVE-2010-2210
2010-06-30 18:30:00
CVE-2010-2207
2010-06-30 18:30:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2010-07-01 00:00:00
VUPEN Security Research - Adobe Acrobat and Reader &quot;newfunction&quot; Memory Corruption Vulnerability &#40;CVE-2010-2168&#41;
2010-07-01 00:00:00
US-CERT Technical Cyber Security Alert TA10-162A -- Adobe Flash and AIR Vulnerabilities
2010-06-12 00:00:00
checkpoint_advisories
checkpoint_advisories
PDF Files Containing Embedded Adobe Flash Movies (CVE-2010-1297; CVE-2010-2168; CVE-2010-2201)
2010-06-30 00:00:00
Adobe Flash Player authplay.dll Component Code Execution (APSA10-01; CVE-2010-1297)
2010-06-07 00:00:00
Adobe Multiple Products authplay.dll PDF File Code Execution - Ver2 (CVE-2010-1297)
2014-03-31 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2010-09-07 00:00:00
Adobe Flash Player: Multiple vulnerabilities
2011-01-21 00:00:00
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Adobe Acrobat Reader
2010-09-24 00:00:00
Adobe Reader 9.3.2 Memory Corruption / Denial Of Service
2010-06-30 00:00:00
Adobe Flash Player newfucntion Invalid Pointer Use
2010-06-15 00:00:00
seebug
seebug
Adobe Acrobat Reader and Flash - 'newfunction' Remote Code Execution Vulnerability
2014-07-01 00:00:00
Adobe Reader 9.3.2 (CoolType.dll) Remote Memory Corruption / DoS Vulnerability
2014-07-01 00:00:00
Adobe Acrobat Reader and Flash Player - β€œnewclass” invalid pointer
2014-07-02 00:00:00
exploitpack
exploitpack
Adobe Acrobat Reader and Flash - newfunction Remote Code Execution
2010-09-23 00:00:00
Adobe Acrobat Reader and Flash Player - newclass Invalid Pointer
2010-09-01 00:00:00
Adobe Reader 9.3.2 - CoolType.dll Remote Memory Corruption Denial of Service
2010-06-29 00:00:00
saint
saint
Adobe Reader authplay.dll newfunction Memory Corruption
2010-06-17 00:00:00
Adobe Reader authplay.dll newfunction Memory Corruption
2010-06-17 00:00:00
Adobe Reader authplay.dll newfunction Memory Corruption
2010-06-17 00:00:00
attackerkb
attackerkb
CVE-2010-1297
2010-06-08 00:00:00
canvas
canvas
Immunity Canvas: FLASH_NEWFUNCTION
2010-06-08 18:30:00
threatpost
threatpost
Adobe to Release Flash Patch June 10
2010-06-08 10:56:42
Adobe Warns of Flash, PDF Zero Day Attack
2010-06-05 03:10:19
metasploit
metasploit
Adobe Flash Player "newfunction" Invalid Pointer Use
2010-06-10 20:28:05
Adobe PDF Embedded EXE Social Engineering
2010-04-29 17:02:33
Adobe Flash Player "newfunction" Invalid Pointer Use
2010-06-10 19:52:43
cert
cert
Adobe Flash ActionScript AVM2 newfunction vulnerability
2010-06-07 00:00:00
zeroscience
zeroscience
Adobe Reader 9.3.2 (CoolType.dll) Remote Memory Corruption / DoS Vulnerability
2010-06-29 00:00:00
zdi
zdi
Adobe Reader CLOD Progressive Mesh Continuation Resolution Remote Code Execution Vulnerability
2010-06-30 00:00:00
cisa_kev
cisa_kev
Adobe Flash Player Memory Corruption Vulnerability
2022-06-08 00:00:00
exploitdb
exploitdb
Adobe Acrobat Reader and Flash - &#039;newfunction&#039; Remote Code Execution
2010-09-23 00:00:00
Adobe Reader 9.3.2 - &#039;CoolType.dll&#039; Remote Memory Corruption / Denial of Service
2010-06-29 00:00:00
Adobe Flash Player - &#039;newfunction&#039; Invalid Pointer Use (Metasploit) (1)
2010-09-20 00:00:00
thn
thn
Bleeding Life 2 Exploit Pack Released
2011-10-24 04:30:00
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34
freebsd
freebsd
linux-flashplugin -- multiple vulnerabilities
2008-10-02 00:00:00
JSON
Related for SUSE_ACROREAD-7087.NASL
nessus33openvas25suse3redhat3prion17ubuntucve16cve17securityvulns13checkpoint_advisories7gentoo2packetstorm7seebug7exploitpack5saint4attackerkb1canvas1threatpost2metasploit3cert1zeroscience1zdi1cisa_kev1exploitdb7thn1securelist1freebsd1