Lucene search
Copyright (C) 2014 Greenbone AGOPENVAS:1361412562310804366HistoryApr 07, 2014 - 12:00 a.m.
Adobe Reader Multiple Vulnerabilities (Dec 2006) - Windows
2014-04-0700:00:00
Copyright (C) 2014 Greenbone AG
plugins.openvas.org
10
6.5 Medium
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.941 High
EPSS
Percentile
99.1%
Adobe Reader is prone to multiple vulnerabilities.
# SPDX-FileCopyrightText: 2014 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:adobe:acrobat_reader";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.804366");
script_version("2024-02-09T05:06:25+0000");
script_cve_id("CVE-2006-6027", "CVE-2006-6236");
script_tag(name:"cvss_base", value:"9.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_tag(name:"last_modification", value:"2024-02-09 05:06:25 +0000 (Fri, 09 Feb 2024)");
script_tag(name:"creation_date", value:"2014-04-07 19:51:38 +0530 (Mon, 07 Apr 2014)");
script_name("Adobe Reader Multiple Vulnerabilities (Dec 2006) - Windows");
script_tag(name:"summary", value:"Adobe Reader is prone to multiple vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Flaws are due to errors in the 'AcroPDF ActiveX' control in AcroPDF.dll.");
script_tag(name:"impact", value:"Successful exploitation will allow attackers to conduct denial of service,
possibly execute arbitrary code and compromise a user's system.");
script_tag(name:"affected", value:"Adobe Reader version 7.0 through 7.0.8 on Windows.");
script_tag(name:"solution", value:"Upgrade to Adobe Reader version 8.0 or later.");
script_tag(name:"qod_type", value:"registry");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name:"URL", value:"http://secunia.com/advisories/23138");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/21155");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/21338");
script_xref(name:"URL", value:"http://securitytracker.com/id?1017297");
script_xref(name:"URL", value:"http://www.kb.cert.org/vuls/id/198908");
script_xref(name:"URL", value:"http://xforce.iss.net/xforce/xfdb/30574");
script_xref(name:"URL", value:"http://www.adobe.com/support/security/bulletins/apsb06-20.html");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2014 Greenbone AG");
script_family("General");
script_dependencies("secpod_adobe_prdts_detect_win.nasl");
script_mandatory_keys("Adobe/Reader/Win/Installed");
exit(0);
}
include("host_details.inc");
include("version_func.inc");
if(!vers = get_app_version(cpe:CPE))
exit(0);
if(vers && vers =~ "^7\.") {
if(version_in_range(version:vers, test_version:"7.0", test_version2:"7.0.8"))
{
security_message( port: 0, data: "The target host was found to be vulnerable" );
exit(0);
}
}
Related
nessus
nessus
Adobe Reader < 8.0 AcroPDF ActiveX Control Multiple Vulnerabilities
2006-12-07 00:00:00
cve
cve
prion
prion
Design/Logic Flaw
2007-03-10 00:19:00
ubuntucve
ubuntucve
CVE-2007-1377
2007-03-10 00:00:00
cert
cert
checkpoint_advisories
checkpoint_advisories
Adobe AcroPDF ActiveX Control Memory Corruption (CVE-2006-6027)
2010-08-01 00:00:00
Adobe Acrobat AcroPDF.dll Code Execution - Ver2 (CVE-2006-6236)
2014-03-03 00:00:00
6.5 Medium
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.941 High
EPSS
Percentile
99.1%
Related for OPENVAS:1361412562310804366