Lucene search
Copyright (C) 2014 Greenbone AGOPENVAS:1361412562310804261HistoryApr 16, 2014 - 12:00 a.m.
Adobe Reader 'File Extension' Buffer Overflow Vulnerability - Mac OS X
2014-04-1600:00:00
Copyright (C) 2014 Greenbone AG
plugins.openvas.org
13
7.1 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.107 Low
EPSS
Percentile
95.0%
Adobe Reader is prone to a buffer overflow vulnerability.
# SPDX-FileCopyrightText: 2014 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:adobe:acrobat_reader";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.804261");
script_version("2024-02-15T05:05:40+0000");
script_cve_id("CVE-2004-0632");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"last_modification", value:"2024-02-15 05:05:40 +0000 (Thu, 15 Feb 2024)");
script_tag(name:"creation_date", value:"2014-04-16 10:39:15 +0530 (Wed, 16 Apr 2014)");
script_name("Adobe Reader 'File Extension' Buffer Overflow Vulnerability - Mac OS X");
script_tag(name:"summary", value:"Adobe Reader is prone to a buffer overflow vulnerability.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Flaw exists due to a parsing and boundary error when splitting filename paths
into components.");
script_tag(name:"impact", value:"Successful exploitation will allow attacker to conduct denial of service and
possibly execute arbitrary code.");
script_tag(name:"affected", value:"Adobe Reader version 6.0 and 6.0.1 on Mac OS X.");
script_tag(name:"solution", value:"Upgrade to Adobe Reader 6.0.2 or later.");
script_tag(name:"qod_type", value:"package");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name:"URL", value:"http://secunia.com/advisories/12053");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/10696");
script_xref(name:"URL", value:"http://xforce.iss.net/xforce/xfdb/16667");
script_xref(name:"URL", value:"http://www.adobe.com/support/techdocs/330527.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2014 Greenbone AG");
script_family("Buffer overflow");
script_dependencies("secpod_adobe_prdts_detect_macosx.nasl");
script_mandatory_keys("Adobe/Reader/MacOSX/Version");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if(!vers = get_app_version(cpe:CPE))
exit(0);
if(vers && vers =~ "^6\.") {
if(version_in_range(version:vers, test_version:"6.0", test_version2:"6.0.1"))
{
security_message( port: 0, data: "The target host was found to be vulnerable" );
exit(0);
}
}
Related
cve
cve
CVE-2004-0632
2004-07-27 04:00:00
checkpoint_advisories
checkpoint_advisories
securityvulns
securityvulns
openvas
openvas
Adobe Reader 'File Extension' Buffer Overflow Vulnerability - Windows
2014-04-16 00:00:00
7.1 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.107 Low
EPSS
Percentile
95.0%
Related for OPENVAS:1361412562310804261