Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2011 Greenbone AGOPENVAS:1361412562310802506
HistoryNov 09, 2011 - 12:00 a.m.

Investintech Products Denial of Service Vulnerabilities

2011-11-0900:00:00
Copyright (C) 2011 Greenbone AG
plugins.openvas.org
13

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.0%

JSON

Investintech products are prone to a denial of service vulnerability.

# SPDX-FileCopyrightText: 2011 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.802506");
  script_version("2023-07-28T05:05:23+0000");
  script_cve_id("CVE-2011-4216", "CVE-2011-4218", "CVE-2011-4219", "CVE-2011-4220",
                "CVE-2011-4217", "CVE-2011-4221", "CVE-2011-4222", "CVE-2011-4223");
  script_tag(name:"cvss_base", value:"9.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"last_modification", value:"2023-07-28 05:05:23 +0000 (Fri, 28 Jul 2023)");
  script_tag(name:"creation_date", value:"2011-11-09 17:35:24 +0530 (Wed, 09 Nov 2011)");
  script_name("Investintech Products Denial of Service Vulnerabilities");
  script_xref(name:"URL", value:"http://www.kb.cert.org/vuls/id/275036");
  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/49923");
  script_xref(name:"URL", value:"http://www.security-database.com/detail.php?alert=CVE-2011-4216");
  script_xref(name:"URL", value:"http://www.investintech.com/download/SPR/1.0.1.12/InstallSlimPDFReader.exe");
  script_xref(name:"URL", value:"http://www.investintech.com/download/A2E/7.0.8.22/InstallAble2Doc.exe");
  script_xref(name:"URL", value:"http://www.investintech.com/download/A2E/7.0.8.22/InstallAble2DocPro.exe");
  script_xref(name:"URL", value:"http://www.investintech.com/download/A2E/7.0.8.22/InstallAble2Extract.exe");
  script_xref(name:"URL", value:"http://www.investintech.com/download/A2E/7.0.8.22/InstallAble2ExtractPro.exe");

  script_tag(name:"qod_type", value:"executable_version");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2011 Greenbone AG");
  script_family("Denial of Service");
  script_dependencies("gb_investintech_prdts_detect.nasl");
  script_mandatory_keys("Investintech/Products/Installed");

  script_tag(name:"insight", value:"The flaws are due to:

  - Unspecified errors in Investintech Able2Extract, Able2Doc,
  and Able2Doc Professional.

  - Not properly restricting write operations in SlimPDF Reader, the arguments
  to unspecified function calls and read operations during block data moves.

  - Fails to prevent faulting-instruction data from affecting write operations
  and faulting-address data from affecting branch selection in SlimPDF Reader.");

  script_tag(name:"solution", value:"Updates are available.");

  script_tag(name:"solution_type", value:"VendorFix");

  script_tag(name:"summary", value:"Investintech products are prone to a denial of service vulnerability.");

  script_tag(name:"impact", value:"Successful exploitation will allow remote attackers to cause a
  denial of service or possibly execute arbitrary code via a crafted PDF document.");

  script_tag(name:"affected", value:"- Able2Extract version 7.0 and prior.

  - SlimPDF Reader version 1.0.0.1 and prior.

  - Able2Extract PDF Server version 1.0.0 or prior.

  - Able2Doc and Able2Doc Professional version 6.0 and prior.");

  exit(0);
}

include("version_func.inc");

slimVer = get_kb_item("SlimPDF/Reader/Ver");
if(slimVer) {
  if(version_is_less_equal(version:slimVer, test_version:"1.0.0.1")) {
    report = report_fixed_ver(installed_version:slimVer, vulnerable_range:"Less than or equal to 1.0.0.1");
    security_message(port:0, data:report);
    VULN = TRUE;
  }
}

docVer = get_kb_item("Able2Doc/Ver");
if(!docVer)
  docVer = get_kb_item("Able2Doc/Pro/Ver");

if(docVer) {
  if(version_is_less_equal(version:docVer, test_version:"6.0")) {
    report = report_fixed_ver(installed_version:docVer, vulnerable_range:"Less than or equal to 6.0");
    security_message(port:0, data:report);
    VULN = TRUE;
  }
}

extractVer = get_kb_item("Able2Extract/Ver");
if(extractVer) {
  if(version_is_less_equal(version:extractVer, test_version:"7.0")) {
    report = report_fixed_ver(installed_version:extractVer, vulnerable_range:"Less than or equal to 7.0");
    security_message(port:0, data:report);
    VULN = TRUE;
  }
}

pdfVer = get_kb_item("Able2Extract/PDF/Server/Ver");
if(pdfVer) {
  if(version_is_less_equal(version:pdfVer, test_version:"1.0.0")) {
    report = report_fixed_ver(installed_version:pdfVer, vulnerable_range:"Less than or equal to 1.0.0");
    security_message(port:0, data:report);
    VULN = TRUE;
  }
}

if(VULN)
  exit(0);
else
  exit(99);

Related

openvas 1
nvd 8
prion 8
cvelist 8
packetstorm 3
seebug 3
nessus 3
cve 8
exploitpack 3
exploitdb 3
openvas
openvas
Investintech Products Denial of Service Vulnerabilities
2011-11-09 00:00:00
nvd
nvd
CVE-2011-4223
2011-11-01 19:55:02
CVE-2011-4222
2011-11-01 19:55:02
CVE-2011-4217
2011-11-01 19:55:02
prion
prion
Code injection
2011-11-01 19:55:00
Code injection
2011-11-01 19:55:00
Code injection
2011-11-01 19:55:00
cvelist
cvelist
CVE-2011-4222
2011-11-01 19:00:00
CVE-2011-4223
2011-11-01 19:00:00
CVE-2011-4216
2011-11-01 19:00:00
packetstorm
packetstorm
Able2Extract 6.0 Memory Corruption
2012-06-25 00:00:00
Slim PDF Reader 1.0 Memory Corruption
2012-06-25 00:00:00
Able2Doc / Able2Doc Professional 6.0 Memory Corruption
2012-06-25 00:00:00
seebug
seebug
Able2Extract and Able2Extract Server 6.0 - Memory Corruption
2014-07-01 00:00:00
Slimpdf Reader 1.0 Memory Corruption
2014-07-01 00:00:00
Able2Doc and Able2Doc Professional 6.0 - Memory Corruption
2014-07-01 00:00:00
nessus
nessus
Investintech Able2Extract < 7.0.8.22 Multiple Vulnerabilities
2012-10-18 00:00:00
Investintech SlimPDF Reader < 1.0.1.12 Multiple Vulnerabilities
2012-10-18 00:00:00
Investintech Able2Doc < 6.0.8.22 Multiple Vulnerabilities
2012-10-18 00:00:00
cve
cve
CVE-2011-4222
2011-11-01 19:55:02
CVE-2011-4223
2011-11-01 19:55:02
CVE-2011-4220
2022-10-03 16:15:13
exploitpack
exploitpack
Able2Extract and Able2Extract Server 6.0 - Memory Corruption
2012-06-25 00:00:00
Able2Doc and Able2Doc Professional 6.0 - Memory Corruption
2012-06-25 00:00:00
Slimpdf Reader 1.0 - Memory Corruption
2012-06-25 00:00:00
exploitdb
exploitdb
Able2Extract and Able2Extract Server 6.0 - Memory Corruption
2012-06-25 00:00:00
Slimpdf Reader 1.0 - Memory Corruption
2012-06-25 00:00:00
Able2Doc and Able2Doc Professional 6.0 - Memory Corruption
2012-06-25 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.2 Medium

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

82.0%

JSON
Related for OPENVAS:1361412562310802506
openvas1nvd8prion8cvelist8packetstorm3seebug3nessus3cve8exploitpack3exploitdb3