Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2012 E-Soft Inc.OPENVAS:136141256231071581
HistoryAug 10, 2012 - 12:00 a.m.

Gentoo Security Advisory GLSA 201206-14 (acroread)

2012-08-1000:00:00
Copyright (C) 2012 E-Soft Inc.
plugins.openvas.org
8

9.6 High

AI Score

Confidence

High

0.684 Medium

EPSS

Percentile

98.0%

JSON

The remote host is missing updates announced in
advisory GLSA 201206-14.

# SPDX-FileCopyrightText: 2012 E-Soft Inc.
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.71581");
  script_tag(name:"cvss_base", value:"10.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_cve_id("CVE-2011-4370", "CVE-2011-4371", "CVE-2011-4372", "CVE-2011-4373", "CVE-2012-0774", "CVE-2012-0775", "CVE-2012-0776", "CVE-2012-0777");
  script_version("2023-11-02T05:05:26+0000");
  script_tag(name:"last_modification", value:"2023-11-02 05:05:26 +0000 (Thu, 02 Nov 2023)");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2022-06-03 15:50:00 +0000 (Fri, 03 Jun 2022)");
  script_tag(name:"creation_date", value:"2012-08-10 03:22:55 -0400 (Fri, 10 Aug 2012)");
  script_name("Gentoo Security Advisory GLSA 201206-14 (acroread)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2012 E-Soft Inc.");
  script_family("Gentoo Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
  script_tag(name:"insight", value:"Multiple vulnerabilities in Adobe Reader might allow remote
attackers to execute arbitrary code or conduct various other attacks.");
  script_tag(name:"solution", value:"All Adobe Reader users should upgrade to the latest version:

      # emerge --sync
      # emerge --ask --oneshot --verbose '>=app-text/acroread-9.5.1'");

  script_xref(name:"URL", value:"http://www.securityspace.com/smysecure/catid.html?in=GLSA%20201206-14");
  script_xref(name:"URL", value:"http://bugs.gentoo.org/show_bug.cgi?id=405949");
  script_xref(name:"URL", value:"http://bugs.gentoo.org/show_bug.cgi?id=411499");
  script_tag(name:"summary", value:"The remote host is missing updates announced in
advisory GLSA 201206-14.");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("pkg-lib-gentoo.inc");
include("revisions-lib.inc");

res = "";
report = "";
if((res = ispkgvuln(pkg:"app-text/acroread", unaffected: make_list("ge 9.5.1"), vulnerable: make_list("lt 9.5.1"))) != NULL ) {
    report += res;
}

if(report != "") {
    security_message(data:report);
} else if (__pkg_match) {
    exit(99);
}

Related

nessus 11
gentoo 1
openvas 12
redhat 1
prion 8
cvelist 8
ubuntucve 8
cve 8
securityvulns 6
suse 3
checkpoint_advisories 8
zdi 1
seebug 4
nessus
nessus
GLSA-201206-14 : Adobe Reader: Multiple vulnerabilities
2012-06-25 00:00:00
RHEL 5 / 6 : acroread (RHSA-2012:0469)
2012-04-11 00:00:00
Adobe Acrobat < 10.1.2 / 9.5 Multiple Vulnerabilities (APSB12-01)
2012-01-11 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2012-06-22 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 201206-14 (acroread)
2012-08-10 00:00:00
Adobe Reader/Acrobat Multiple Memory Corruption Vulnerabilities (APSB12-01) - Windows
2012-01-16 00:00:00
Adobe Reader/Acrobat Multiple Memory Corruption Vulnerabilities (APSB12-01) - Mac OS X
2012-01-16 00:00:00
redhat
redhat
(RHSA-2012:0469) Critical: acroread security update
2012-04-10 00:00:00
prion
prion
Memory corruption
2012-01-10 21:55:00
Memory corruption
2012-01-10 21:55:00
Memory corruption
2012-01-10 21:55:00
cvelist
cvelist
CVE-2011-4370
2012-01-10 21:00:00
CVE-2011-4372
2012-01-10 21:00:00
CVE-2011-4373
2012-01-10 21:00:00
ubuntucve
ubuntucve
CVE-2011-4373
2012-01-10 00:00:00
CVE-2011-4370
2012-01-10 00:00:00
CVE-2011-4372
2012-01-10 00:00:00
cve
cve
CVE-2011-4373
2012-01-10 21:55:00
CVE-2011-4372
2012-01-10 21:55:00
CVE-2011-4370
2012-01-10 21:55:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2012-04-19 00:00:00
Security updates available for Adobe Reader and Acrobat
2012-04-19 00:00:00
Adobe Acrobat / Reader multiple security vulnerabilities
2012-02-13 00:00:00
suse
suse
Security update for Acrobat Reader (important)
2012-04-18 19:08:26
Security update for Acrobat Reader (important)
2012-04-18 19:08:30
update for acroread (important)
2012-04-16 17:08:30
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against Adobe Reader and Acrobat Embedded BMP Malicious JavaScript Memory Corruption (APSB12-01; CVE-2011-4372)
2012-01-17 00:00:00
Adobe Acrobat and Reader JPEG DCT Dequantizer Memory Corruption (APSB12-01; CVE-2011-4370)
2012-01-17 00:00:00
Adobe Reader and Acrobat Malformed JavaScript Heap Corruption (APSB12-01; CVE-2011-4371)
2012-01-17 00:00:00
zdi
zdi
Adobe Reader BMP Resource Signedness Remote Code Execution Vulnerability
2012-02-08 00:00:00
seebug
seebug
Adobe Acrobat和Reader安全限制绕过漏洞(CVE-2012-0776)
2012-04-12 00:00:00
Adobe Acrobat和Reader整数溢出漏洞(CVE-2012-0774)
2012-04-12 00:00:00
Adobe Acrobat和Reader内存破坏漏洞(CVE-2012-0777)
2012-04-12 00:00:00

9.6 High

AI Score

Confidence

High

0.684 Medium

EPSS

Percentile

98.0%

JSON
Related for OPENVAS:136141256231071581
nessus11gentoo1openvas12redhat1prion8cvelist8ubuntucve8cve8securityvulns6suse3checkpoint_advisories8zdi1seebug4