Search...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of August 14, 2017

2017-08-18T12:00:42

ID TRENDMICROBLOG:3BC4D55C7B197F32FEF9A2D171ACD8AB
Type trendmicroblog
Reporter Elisa Lippincott (TippingPoint Global Product Marketing)
Modified 2017-08-18T12:00:42

Description

One of my favorite movies is the 1999 comedy “Galaxy Quest,” which features the cast of a science-fiction television series similar to Star Trek. In the movie, the crew is visited by real aliens who ask them for help against an intergalactic adversary because they believe that Galaxy Quest is a documentary of historical documents – not a TV show. There’s a scene in the movie where someone pressed the button that destroys the ship. The crew makes it to the center of the ship where they can stop the process but the stop button doesn’t work. The countdown to destruction continues, but when the clock hits one second, it stops. Why? Because on a TV show, the clock always stops at one second before total destruction.

Sometimes, we can’t control the script of our real-life security world and the clock doesn’t stop at one second. Yesterday, the Zero Day Initiative (ZDI) published two zero-day advisories for vulnerabilities in Foxit Reader per the guidelines outlined in the ZDI disclosure policy. The two advisories, ZDI-17-691 and ZDI-17-692, allow remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. For more detailed analysis of the Foxit Reader vulnerabilities, you can read the ZDI blog: Busting Myths in Foxit Reader.

Adobe Security Update

This week’s Digital Vaccine (DV) package includes coverage for Adobe updates released on or before August 8, 2017. The following table maps Digital Vaccine filters to the Adobe updates. Filters marked with an () shipped prior to this week’s DV package, providing zero-day protection for our customers. You can get more detailed information on this month’s security updates from Dustin Childs’ August 2017 Security Update Review from the Zero Day Initiative:

Bulletin # | CVE # | Digital Vaccine Filter # | Status
---|---|---|---
APSB17-23 | CVE-2017-3085 | | Local Only
APSB17-23 | CVE-2017-3106 | 29353 |
APSB17-24 | CVE-2017-3113 | 26537 |
APSB17-24 | CVE-2017-3115 | 27233 |
APSB17-24 | CVE-2017-3116 | 29354 |
APSB17-24 | CVE-2017-3117 | | Vendor Deemed Reproducibility or Exploitation Unlikely
APSB17-24 | CVE-2017-3118 | 29358 |
APSB17-24 | CVE-2017-3119 | 29359 |
APSB17-24 | CVE-2017-3120 | 27751 |
APSB17-24 | CVE-2017-3121 | 27948 |
APSB17-24 | CVE-2017-3122 | 28005 |
APSB17-24 | CVE-2017-3123 | 28032 |
APSB17-24 | CVE-2017-3124 | 28034 |
APSB17-24 | CVE-2017-11209 | 28035 |
APSB17-24 | CVE-2017-11210 | 28092 |
APSB17-24 | CVE-2017-11211 | 28218 |
APSB17-24 | CVE-2017-11212 | 28100 |
APSB17-24 | CVE-2017-11214 | 28216 |
APSB17-24 | CVE-2017-11216 | 27821 |
APSB17-24 | CVE-2017-11217 | 27812 |
APSB17-24 | CVE-2017-11218 | 27753 |
APSB17-24 | CVE-2017-11219 | 27820 |
APSB17-24 | CVE-2017-11220 | 29360 |
APSB17-24 | CVE-2017-11221 | 29413 |
APSB17-24 | CVE-2017-11222 | 29352 |
APSB17-24 | CVE-2017-11223 | 28202 |
APSB17-24 | CVE-2017-11224 | 28202 |
APSB17-24 | CVE-2017-11226 | 29349 |
APSB17-24 | CVE-2017-11227 | 28473 |
APSB17-24 | CVE-2017-11228 | 28475 |
APSB17-24 | CVE-2017-11229 | 29361 |
APSB17-24 | CVE-2017-11230 | 28476 |
APSB17-24 | CVE-2017-11231 | 28478 |
APSB17-24 | CVE-2017-11232 | 28479 |
APSB17-24 | CVE-2017-11233 | 28481 |
APSB17-24 | CVE-2017-11234 | 28543 |
APSB17-24 | CVE-2017-11235 | 29362 |
APSB17-24 | CVE-2017-11236 | 29363 |
APSB17-24 | CVE-2017-11237 | 29370 |
APSB17-24 | CVE-2017-11238 | 29371 |
APSB17-24 | CVE-2017-11239 | 28544 |
APSB17-24 | CVE-2017-11241 | 28547 |
APSB17-24 | CVE-2017-11242 | 28480, 28548 |
APSB17-24 | CVE-2017-11243 | 28663 |
APSB17-24 | CVE-2017-11244 | 28664 |
APSB17-24 | CVE-2017-11245 | 28666 |
APSB17-24 | CVE-2017-11246 | 29414 |
APSB17-24 | CVE-2017-11248 | 28463 |
APSB17-24 | CVE-2017-11249 | 28464 |
APSB17-24 | CVE-2017-11251 | 29418 |
APSB17-24 | CVE-2017-11252 | 28477 |
APSB17-24 | CVE-2017-11254 | 29350 |
APSB17-24 | CVE-2017-11255 | 28741 |
APSB17-24 | CVE-2017-11256 | 28735 |
APSB17-24 | CVE-2017-11257 | 28734 |
APSB17-24 | CVE-2017-11258 | 28732 |
APSB17-24 | CVE-2017-11259 | 28733 |
APSB17-24 | CVE-2017-11260 | 28731 |
APSB17-24 | CVE-2017-11261 | 28730 |
APSB17-24 | CVE-2017-11262 | 29355 |
APSB17-24 | CVE-2017-11263 | 29369 |
APSB17-24 | CVE-2017-11265 | 28916 |
APSB17-24 | CVE-2017-11267 | 29364 |
APSB17-24 | CVE-2017-11268 | 29365 |
APSB17-24 | CVE-2017-11269 | 29366 |
APSB17-24 | CVE-2017-11270 | 29367 |
APSB17-24 | CVE-2017-11271 | 29368 |

TippingPoint Operating System (TOS) v3.9.2 Release

Earlier this week, we issued a maintenance release version 3.9.2 build 4784 of the TippingPoint Operating System (TOS) for the N/NX Platform family. For the complete list of enhancements and changes, please refer to the product Release Notes located on the Threat Management center (TMC) Web site at <https://tmc.tippingpoint.com>. Customers with questions or technical assistance can contact the TippingPoint Technical Assistance Center (TAC).

Zero-Day Filters

There are 14 new zero-day filters covering two vendors in this week’s Digital Vaccine (DV) package. A number of existing filters in this week’s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of published advisories and upcoming advisories on the Zero Day Initiative website.

Adobe (11)

|

29362: HTTP: Adobe Acrobat Pro DC ImageConversion JPEG Use-After-Free Vulnerability (ZDI-17-590)

29363: HTTP: Adobe Acrobat Pro DC Forms Information Disclosure Vulnerability (ZDI-17-591)

29364: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-621)

29365: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-622)

29366: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-623)

29367: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-625)

29368: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-629)

29370: HTTP: Adobe Acrobat Pro DC Font Parsing Information Disclosure Vulnerability (ZDI-17-592)

29371: HTTP: Adobe Acrobat Pro DC ImageConversion EMF Information Disclosure Vulnerability (ZDI-17-593)

29414: HTTP: Adobe Acrobat Pro ImageConversion JPEG Information Disclosure Vulnerability (ZDI-17-603)

29418: HTTP: Adobe Acrobat Pro DC JPEG2000 Memory Corruption Vulnerability (ZDI-17-609)
---|---

Trend Micro (3)

|

29333: HTTPS: Trend Micro SafeSync for Enterprise replace_local_disk Command Injection (ZDI-17-119)

29337: HTTP: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118)

29338: HTTPS: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118)
---|---
|

Missed Last Week’s News?

Catch up on last week’s news in my weekly recap.

JSON Vulners Source

Initial Source

{"cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://blog.trendmicro.com/tippingpoint-threat-intelligence-zero-day-coverage-week-august-14-2017/", "references": [], "enchantments_done": [], "_object_types": ["robots.models.rss.RssBulletin", "robots.models.base.Bulletin"], "id": "TRENDMICROBLOG:3BC4D55C7B197F32FEF9A2D171ACD8AB", "history": [{"lastseen": "2017-08-18T14:11:04", "differentElements": ["description", "href"], "edition": 1, "bulletin": {"cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "http://blog.trendmicro.com/tippingpoint-threat-intelligence-zero-day-coverage-week-august-14-2017/", "id": "TRENDMICROBLOG:3BC4D55C7B197F32FEF9A2D171ACD8AB", "history": [], "modified": "2017-08-18T12:00:42", "type": "trendmicroblog", "description": "![](http://blog.trendmicro.com/wp-content/uploads/2016/04/TP-WeeklyBlog-300x205-300x205.jpg)\n\nOne of my favorite movies is the 1999 comedy \u201cGalaxy Quest,\u201d which features the cast of a science-fiction television series similar to Star Trek. In the movie, the crew is visited by real aliens who ask them for help against an intergalactic adversary because they believe that Galaxy Quest is a documentary of historical documents \u2013 not a TV show. There\u2019s a scene in the movie where someone pressed the button that destroys the ship. The crew makes it to the center of the ship where they can stop the process but the stop button doesn\u2019t work. The countdown to destruction continues, but when the clock hits one second, it stops. Why? Because on a TV show, the clock always stops at one second before total destruction.\n\nSometimes, we can\u2019t control the script of our real-life security world and the clock doesn\u2019t stop at one second. Yesterday, the [Zero Day Initiative](<http://www.zerodayinitiative.com/>) (ZDI) published two zero-day advisories for vulnerabilities in Foxit Reader per the guidelines outlined in the ZDI disclosure policy. The two advisories, [ZDI-17-691](<http://www.zerodayinitiative.com/advisories/ZDI-17-691/>) and [ZDI-17-692](<http://www.zerodayinitiative.com/advisories/ZDI-17-692/>), allow remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. For more detailed analysis of the Foxit Reader vulnerabilities, you can read the ZDI blog: [Busting Myths in Foxit Reader](<https://www.zerodayinitiative.com/blog/2017/8/17/busting-myths-in-foxit-reader>).\n\n**Adobe Security Update**\n\nThis week\u2019s Digital Vaccine (DV) package includes coverage for Adobe updates released on or before August 8, 2017. The following table maps Digital Vaccine filters to the Adobe updates. Filters marked with an (*) shipped prior to this week\u2019s DV package, providing zero-day protection for our customers. You can get more detailed information on this month\u2019s security updates from Dustin Childs\u2019 [August 2017 Security Update Review](<https://www.zerodayinitiative.com/blog/2017/8/8/the-august-2017-security-update-review>) from the Zero Day Initiative:\n\n**Bulletin #** | **CVE #** | **Digital Vaccine Filter #** | **Status** \n---|---|---|--- \nAPSB17-23 | CVE-2017-3085 | | Local Only \nAPSB17-23 | CVE-2017-3106 | 29353 | \nAPSB17-24 | CVE-2017-3113 | *26537 | \nAPSB17-24 | CVE-2017-3115 | *27233 | \nAPSB17-24 | CVE-2017-3116 | 29354 | \nAPSB17-24 | CVE-2017-3117 | | Vendor Deemed Reproducibility or Exploitation Unlikely \nAPSB17-24 | CVE-2017-3118 | 29358 | \nAPSB17-24 | CVE-2017-3119 | 29359 | \nAPSB17-24 | CVE-2017-3120 | *27751 | \nAPSB17-24 | CVE-2017-3121 | *27948 | \nAPSB17-24 | CVE-2017-3122 | *28005 | \nAPSB17-24 | CVE-2017-3123 | *28032 | \nAPSB17-24 | CVE-2017-3124 | *28034 | \nAPSB17-24 | CVE-2017-11209 | *28035 | \nAPSB17-24 | CVE-2017-11210 | *28092 | \nAPSB17-24 | CVE-2017-11211 | *28218 | \nAPSB17-24 | CVE-2017-11212 | *28100 | \nAPSB17-24 | CVE-2017-11214 | *28216 | \nAPSB17-24 | CVE-2017-11216 | *27821 | \nAPSB17-24 | CVE-2017-11217 | *27812 | \nAPSB17-24 | CVE-2017-11218 | *27753 | \nAPSB17-24 | CVE-2017-11219 | *27820 | \nAPSB17-24 | CVE-2017-11220 | 29360 | \nAPSB17-24 | CVE-2017-11221 | 29413 | \nAPSB17-24 | CVE-2017-11222 | 29352 | \nAPSB17-24 | CVE-2017-11223 | *28202 | \nAPSB17-24 | CVE-2017-11224 | *28202 | \nAPSB17-24 | CVE-2017-11226 | 29349 | \nAPSB17-24 | CVE-2017-11227 | *28473 | \nAPSB17-24 | CVE-2017-11228 | *28475 | \nAPSB17-24 | CVE-2017-11229 | 29361 | \nAPSB17-24 | CVE-2017-11230 | *28476 | \nAPSB17-24 | CVE-2017-11231 | *28478 | \nAPSB17-24 | CVE-2017-11232 | *28479 | \nAPSB17-24 | CVE-2017-11233 | *28481 | \nAPSB17-24 | CVE-2017-11234 | *28543 | \nAPSB17-24 | CVE-2017-11235 | 29362 | \nAPSB17-24 | CVE-2017-11236 | 29363 | \nAPSB17-24 | CVE-2017-11237 | 29370 | \nAPSB17-24 | CVE-2017-11238 | 29371 | \nAPSB17-24 | CVE-2017-11239 | *28544 | \nAPSB17-24 | CVE-2017-11241 | *28547 | \nAPSB17-24 | CVE-2017-11242 | 28480, 28548 | \nAPSB17-24 | CVE-2017-11243 | *28663 | \nAPSB17-24 | CVE-2017-11244 | *28664 | \nAPSB17-24 | CVE-2017-11245 | *28666 | \nAPSB17-24 | CVE-2017-11246 | 29414 | \nAPSB17-24 | CVE-2017-11248 | *28463 | \nAPSB17-24 | CVE-2017-11249 | *28464 | \nAPSB17-24 | CVE-2017-11251 | 29418 | \nAPSB17-24 | CVE-2017-11252 | *28477 | \nAPSB17-24 | CVE-2017-11254 | 29350 | \nAPSB17-24 | CVE-2017-11255 | *28741 | \nAPSB17-24 | CVE-2017-11256 | *28735 | \nAPSB17-24 | CVE-2017-11257 | *28734 | \nAPSB17-24 | CVE-2017-11258 | *28732 | \nAPSB17-24 | CVE-2017-11259 | *28733 | \nAPSB17-24 | CVE-2017-11260 | *28731 | \nAPSB17-24 | CVE-2017-11261 | *28730 | \nAPSB17-24 | CVE-2017-11262 | 29355 | \nAPSB17-24 | CVE-2017-11263 | 29369 | \nAPSB17-24 | CVE-2017-11265 | *28916 | \nAPSB17-24 | CVE-2017-11267 | 29364 | \nAPSB17-24 | CVE-2017-11268 | 29365 | \nAPSB17-24 | CVE-2017-11269 | 29366 | \nAPSB17-24 | CVE-2017-11270 | 29367 | \nAPSB17-24 | CVE-2017-11271 | 29368 | \n \n \n\n**TippingPoint Operating System (TOS) v3.9.2 Release**\n\nEarlier this week, we issued a maintenance release version 3.9.2 build 4784 of the TippingPoint Operating System (TOS) for the N/NX Platform family. For the complete list of enhancements and changes, please refer to the product Release Notes located on the Threat Management center (TMC) Web site at <https://tmc.tippingpoint.com>. Customers with questions or technical assistance can contact the TippingPoint Technical Assistance Center (TAC).\n\n**Zero-Day Filters**\n\nThere are 14 new zero-day filters covering two vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of [published advisories](<http://www.zerodayinitiative.com/advisories/published/>) and [upcoming advisories](<http://www.zerodayinitiative.com/advisories/upcoming/>) on the [Zero Day Initiative](<http://www.zerodayinitiative.com/>) website.\n\n**_Adobe (11)_**\n\n| \n\n * 29362: HTTP: Adobe Acrobat Pro DC ImageConversion JPEG Use-After-Free Vulnerability (ZDI-17-590)\n * 29363: HTTP: Adobe Acrobat Pro DC Forms Information Disclosure Vulnerability (ZDI-17-591)\n * 29364: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-621)\n * 29365: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-622)\n * 29366: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-623)\n * 29367: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-625)\n * 29368: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-629)\n * 29370: HTTP: Adobe Acrobat Pro DC Font Parsing Information Disclosure Vulnerability (ZDI-17-592)\n * 29371: HTTP: Adobe Acrobat Pro DC ImageConversion EMF Information Disclosure Vulnerability (ZDI-17-593)\n * 29414: HTTP: Adobe Acrobat Pro ImageConversion JPEG Information Disclosure Vulnerability (ZDI-17-603)\n * 29418: HTTP: Adobe Acrobat Pro DC JPEG2000 Memory Corruption Vulnerability (ZDI-17-609)**_ _** \n---|--- \n \n**_ _**\n\n**_Trend Micro (3)_**\n\n| \n\n * 29333: HTTPS: Trend Micro SafeSync for Enterprise replace_local_disk Command Injection (ZDI-17-119)\n * 29337: HTTP: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118)\n * 29338: HTTPS: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118) \n---|--- \n| \n \n**Missed Last Week\u2019s News?**\n\nCatch up on last week\u2019s news in my [weekly recap](<http://blog.trendmicro.com/tippingpoint-threat-intelligence-zero-day-coverage-week-august-7-2017/>).", "published": "2017-08-18T12:00:42", "cvelist": ["CVE-2017-11209", "CVE-2017-11210", "CVE-2017-11211", "CVE-2017-11212", "CVE-2017-11214", "CVE-2017-11216", "CVE-2017-11217", "CVE-2017-11218", "CVE-2017-11219", "CVE-2017-11220", "CVE-2017-11221", "CVE-2017-11222", "CVE-2017-11223", "CVE-2017-11224", "CVE-2017-11226", "CVE-2017-11227", "CVE-2017-11228", "CVE-2017-11229", "CVE-2017-11230", "CVE-2017-11231", "CVE-2017-11232", "CVE-2017-11233", "CVE-2017-11234", "CVE-2017-11235", "CVE-2017-11236", "CVE-2017-11237", "CVE-2017-11238", "CVE-2017-11239", "CVE-2017-11241", "CVE-2017-11242", "CVE-2017-11243", "CVE-2017-11244", "CVE-2017-11245", "CVE-2017-11246", "CVE-2017-11248", "CVE-2017-11249", "CVE-2017-11251", "CVE-2017-11252", "CVE-2017-11254", "CVE-2017-11255", "CVE-2017-11256", "CVE-2017-11257", "CVE-2017-11258", "CVE-2017-11259", "CVE-2017-11260", "CVE-2017-11261", "CVE-2017-11262", "CVE-2017-11263", "CVE-2017-11265", "CVE-2017-11267", "CVE-2017-11268", "CVE-2017-11269", "CVE-2017-11270", "CVE-2017-11271", "CVE-2017-3085", "CVE-2017-3106", "CVE-2017-3113", "CVE-2017-3115", "CVE-2017-3116", "CVE-2017-3117", "CVE-2017-3118", "CVE-2017-3119", "CVE-2017-3120", "CVE-2017-3121", "CVE-2017-3122", "CVE-2017-3123", "CVE-2017-3124"], "title": "TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of August 14, 2017", "lastseen": "2017-08-18T14:11:04", "viewCount": 24, "enchantments": {}, "reporter": "Elisa Lippincott (TippingPoint Global Product Marketing)", "bulletinFamily": "blog", "objectVersion": "1.4", "references": []}}, {"lastseen": "2017-08-24T02:10:18", "differentElements": ["description", "href"], "edition": 2, "bulletin": {"cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://blog.trendmicro.com/tippingpoint-threat-intelligence-zero-day-coverage-week-august-14-2017/", "id": "TRENDMICROBLOG:3BC4D55C7B197F32FEF9A2D171ACD8AB", "history": [], "modified": "2017-08-18T12:00:42", "type": "trendmicroblog", "description": "![](https://blog.trendmicro.com/wp-content/uploads/2016/04/TP-WeeklyBlog-300x205-300x205.jpg)\n\nOne of my favorite movies is the 1999 comedy \u201cGalaxy Quest,\u201d which features the cast of a science-fiction television series similar to Star Trek. In the movie, the crew is visited by real aliens who ask them for help against an intergalactic adversary because they believe that Galaxy Quest is a documentary of historical documents \u2013 not a TV show. There\u2019s a scene in the movie where someone pressed the button that destroys the ship. The crew makes it to the center of the ship where they can stop the process but the stop button doesn\u2019t work. The countdown to destruction continues, but when the clock hits one second, it stops. Why? Because on a TV show, the clock always stops at one second before total destruction.\n\nSometimes, we can\u2019t control the script of our real-life security world and the clock doesn\u2019t stop at one second. Yesterday, the [Zero Day Initiative](<http://www.zerodayinitiative.com/>) (ZDI) published two zero-day advisories for vulnerabilities in Foxit Reader per the guidelines outlined in the ZDI disclosure policy. The two advisories, [ZDI-17-691](<http://www.zerodayinitiative.com/advisories/ZDI-17-691/>) and [ZDI-17-692](<http://www.zerodayinitiative.com/advisories/ZDI-17-692/>), allow remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. For more detailed analysis of the Foxit Reader vulnerabilities, you can read the ZDI blog: [Busting Myths in Foxit Reader](<https://www.zerodayinitiative.com/blog/2017/8/17/busting-myths-in-foxit-reader>).\n\n**Adobe Security Update**\n\nThis week\u2019s Digital Vaccine (DV) package includes coverage for Adobe updates released on or before August 8, 2017. The following table maps Digital Vaccine filters to the Adobe updates. Filters marked with an (*) shipped prior to this week\u2019s DV package, providing zero-day protection for our customers. You can get more detailed information on this month\u2019s security updates from Dustin Childs\u2019 [August 2017 Security Update Review](<https://www.zerodayinitiative.com/blog/2017/8/8/the-august-2017-security-update-review>) from the Zero Day Initiative:\n\n**Bulletin #** | **CVE #** | **Digital Vaccine Filter #** | **Status** \n---|---|---|--- \nAPSB17-23 | CVE-2017-3085 | | Local Only \nAPSB17-23 | CVE-2017-3106 | 29353 | \nAPSB17-24 | CVE-2017-3113 | *26537 | \nAPSB17-24 | CVE-2017-3115 | *27233 | \nAPSB17-24 | CVE-2017-3116 | 29354 | \nAPSB17-24 | CVE-2017-3117 | | Vendor Deemed Reproducibility or Exploitation Unlikely \nAPSB17-24 | CVE-2017-3118 | 29358 | \nAPSB17-24 | CVE-2017-3119 | 29359 | \nAPSB17-24 | CVE-2017-3120 | *27751 | \nAPSB17-24 | CVE-2017-3121 | *27948 | \nAPSB17-24 | CVE-2017-3122 | *28005 | \nAPSB17-24 | CVE-2017-3123 | *28032 | \nAPSB17-24 | CVE-2017-3124 | *28034 | \nAPSB17-24 | CVE-2017-11209 | *28035 | \nAPSB17-24 | CVE-2017-11210 | *28092 | \nAPSB17-24 | CVE-2017-11211 | *28218 | \nAPSB17-24 | CVE-2017-11212 | *28100 | \nAPSB17-24 | CVE-2017-11214 | *28216 | \nAPSB17-24 | CVE-2017-11216 | *27821 | \nAPSB17-24 | CVE-2017-11217 | *27812 | \nAPSB17-24 | CVE-2017-11218 | *27753 | \nAPSB17-24 | CVE-2017-11219 | *27820 | \nAPSB17-24 | CVE-2017-11220 | 29360 | \nAPSB17-24 | CVE-2017-11221 | 29413 | \nAPSB17-24 | CVE-2017-11222 | 29352 | \nAPSB17-24 | CVE-2017-11223 | *28202 | \nAPSB17-24 | CVE-2017-11224 | *28202 | \nAPSB17-24 | CVE-2017-11226 | 29349 | \nAPSB17-24 | CVE-2017-11227 | *28473 | \nAPSB17-24 | CVE-2017-11228 | *28475 | \nAPSB17-24 | CVE-2017-11229 | 29361 | \nAPSB17-24 | CVE-2017-11230 | *28476 | \nAPSB17-24 | CVE-2017-11231 | *28478 | \nAPSB17-24 | CVE-2017-11232 | *28479 | \nAPSB17-24 | CVE-2017-11233 | *28481 | \nAPSB17-24 | CVE-2017-11234 | *28543 | \nAPSB17-24 | CVE-2017-11235 | 29362 | \nAPSB17-24 | CVE-2017-11236 | 29363 | \nAPSB17-24 | CVE-2017-11237 | 29370 | \nAPSB17-24 | CVE-2017-11238 | 29371 | \nAPSB17-24 | CVE-2017-11239 | *28544 | \nAPSB17-24 | CVE-2017-11241 | *28547 | \nAPSB17-24 | CVE-2017-11242 | 28480, 28548 | \nAPSB17-24 | CVE-2017-11243 | *28663 | \nAPSB17-24 | CVE-2017-11244 | *28664 | \nAPSB17-24 | CVE-2017-11245 | *28666 | \nAPSB17-24 | CVE-2017-11246 | 29414 | \nAPSB17-24 | CVE-2017-11248 | *28463 | \nAPSB17-24 | CVE-2017-11249 | *28464 | \nAPSB17-24 | CVE-2017-11251 | 29418 | \nAPSB17-24 | CVE-2017-11252 | *28477 | \nAPSB17-24 | CVE-2017-11254 | 29350 | \nAPSB17-24 | CVE-2017-11255 | *28741 | \nAPSB17-24 | CVE-2017-11256 | *28735 | \nAPSB17-24 | CVE-2017-11257 | *28734 | \nAPSB17-24 | CVE-2017-11258 | *28732 | \nAPSB17-24 | CVE-2017-11259 | *28733 | \nAPSB17-24 | CVE-2017-11260 | *28731 | \nAPSB17-24 | CVE-2017-11261 | *28730 | \nAPSB17-24 | CVE-2017-11262 | 29355 | \nAPSB17-24 | CVE-2017-11263 | 29369 | \nAPSB17-24 | CVE-2017-11265 | *28916 | \nAPSB17-24 | CVE-2017-11267 | 29364 | \nAPSB17-24 | CVE-2017-11268 | 29365 | \nAPSB17-24 | CVE-2017-11269 | 29366 | \nAPSB17-24 | CVE-2017-11270 | 29367 | \nAPSB17-24 | CVE-2017-11271 | 29368 | \n \n \n\n**TippingPoint Operating System (TOS) v3.9.2 Release**\n\nEarlier this week, we issued a maintenance release version 3.9.2 build 4784 of the TippingPoint Operating System (TOS) for the N/NX Platform family. For the complete list of enhancements and changes, please refer to the product Release Notes located on the Threat Management center (TMC) Web site at <https://tmc.tippingpoint.com>. Customers with questions or technical assistance can contact the TippingPoint Technical Assistance Center (TAC).\n\n**Zero-Day Filters**\n\nThere are 14 new zero-day filters covering two vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of [published advisories](<http://www.zerodayinitiative.com/advisories/published/>) and [upcoming advisories](<http://www.zerodayinitiative.com/advisories/upcoming/>) on the [Zero Day Initiative](<http://www.zerodayinitiative.com/>) website.\n\n**_Adobe (11)_**\n\n| \n\n * 29362: HTTP: Adobe Acrobat Pro DC ImageConversion JPEG Use-After-Free Vulnerability (ZDI-17-590)\n * 29363: HTTP: Adobe Acrobat Pro DC Forms Information Disclosure Vulnerability (ZDI-17-591)\n * 29364: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-621)\n * 29365: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-622)\n * 29366: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-623)\n * 29367: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-625)\n * 29368: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-629)\n * 29370: HTTP: Adobe Acrobat Pro DC Font Parsing Information Disclosure Vulnerability (ZDI-17-592)\n * 29371: HTTP: Adobe Acrobat Pro DC ImageConversion EMF Information Disclosure Vulnerability (ZDI-17-593)\n * 29414: HTTP: Adobe Acrobat Pro ImageConversion JPEG Information Disclosure Vulnerability (ZDI-17-603)\n * 29418: HTTP: Adobe Acrobat Pro DC JPEG2000 Memory Corruption Vulnerability (ZDI-17-609)**_ _** \n---|--- \n \n**_ _**\n\n**_Trend Micro (3)_**\n\n| \n\n * 29333: HTTPS: Trend Micro SafeSync for Enterprise replace_local_disk Command Injection (ZDI-17-119)\n * 29337: HTTP: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118)\n * 29338: HTTPS: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118) \n---|--- \n| \n \n**Missed Last Week\u2019s News?**\n\nCatch up on last week\u2019s news in my [weekly recap](<http://blog.trendmicro.com/tippingpoint-threat-intelligence-zero-day-coverage-week-august-7-2017/>).", "published": "2017-08-18T12:00:42", "cvelist": ["CVE-2017-11209", "CVE-2017-11210", "CVE-2017-11211", "CVE-2017-11212", "CVE-2017-11214", "CVE-2017-11216", "CVE-2017-11217", "CVE-2017-11218", "CVE-2017-11219", "CVE-2017-11220", "CVE-2017-11221", "CVE-2017-11222", "CVE-2017-11223", "CVE-2017-11224", "CVE-2017-11226", "CVE-2017-11227", "CVE-2017-11228", "CVE-2017-11229", "CVE-2017-11230", "CVE-2017-11231", "CVE-2017-11232", "CVE-2017-11233", "CVE-2017-11234", "CVE-2017-11235", "CVE-2017-11236", "CVE-2017-11237", "CVE-2017-11238", "CVE-2017-11239", "CVE-2017-11241", "CVE-2017-11242", "CVE-2017-11243", "CVE-2017-11244", "CVE-2017-11245", "CVE-2017-11246", "CVE-2017-11248", "CVE-2017-11249", "CVE-2017-11251", "CVE-2017-11252", "CVE-2017-11254", "CVE-2017-11255", "CVE-2017-11256", "CVE-2017-11257", "CVE-2017-11258", "CVE-2017-11259", "CVE-2017-11260", "CVE-2017-11261", "CVE-2017-11262", "CVE-2017-11263", "CVE-2017-11265", "CVE-2017-11267", "CVE-2017-11268", "CVE-2017-11269", "CVE-2017-11270", "CVE-2017-11271", "CVE-2017-3085", "CVE-2017-3106", "CVE-2017-3113", "CVE-2017-3115", "CVE-2017-3116", "CVE-2017-3117", "CVE-2017-3118", "CVE-2017-3119", "CVE-2017-3120", "CVE-2017-3121", "CVE-2017-3122", "CVE-2017-3123", "CVE-2017-3124"], "title": "TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of August 14, 2017", "lastseen": "2017-08-24T02:10:18", "viewCount": 24, "enchantments": {}, "reporter": "Elisa Lippincott (TippingPoint Global Product Marketing)", "bulletinFamily": "blog", "objectVersion": "1.4", "references": []}}], "modified": "2017-08-18T12:00:42", "lastseen": "2017-08-24T14:09:47", "published": "2017-08-18T12:00:42", "description": "![](http://blog.trendmicro.com/wp-content/uploads/2016/04/TP-WeeklyBlog-300x205-300x205.jpg)\n\nOne of my favorite movies is the 1999 comedy \u201cGalaxy Quest,\u201d which features the cast of a science-fiction television series similar to Star Trek. In the movie, the crew is visited by real aliens who ask them for help against an intergalactic adversary because they believe that Galaxy Quest is a documentary of historical documents \u2013 not a TV show. There\u2019s a scene in the movie where someone pressed the button that destroys the ship. The crew makes it to the center of the ship where they can stop the process but the stop button doesn\u2019t work. The countdown to destruction continues, but when the clock hits one second, it stops. Why? Because on a TV show, the clock always stops at one second before total destruction.\n\nSometimes, we can\u2019t control the script of our real-life security world and the clock doesn\u2019t stop at one second. Yesterday, the [Zero Day Initiative](<http://www.zerodayinitiative.com/>) (ZDI) published two zero-day advisories for vulnerabilities in Foxit Reader per the guidelines outlined in the ZDI disclosure policy. The two advisories, [ZDI-17-691](<http://www.zerodayinitiative.com/advisories/ZDI-17-691/>) and [ZDI-17-692](<http://www.zerodayinitiative.com/advisories/ZDI-17-692/>), allow remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader. For more detailed analysis of the Foxit Reader vulnerabilities, you can read the ZDI blog: [Busting Myths in Foxit Reader](<https://www.zerodayinitiative.com/blog/2017/8/17/busting-myths-in-foxit-reader>).\n\n**Adobe Security Update**\n\nThis week\u2019s Digital Vaccine (DV) package includes coverage for Adobe updates released on or before August 8, 2017. The following table maps Digital Vaccine filters to the Adobe updates. Filters marked with an (*) shipped prior to this week\u2019s DV package, providing zero-day protection for our customers. You can get more detailed information on this month\u2019s security updates from Dustin Childs\u2019 [August 2017 Security Update Review](<https://www.zerodayinitiative.com/blog/2017/8/8/the-august-2017-security-update-review>) from the Zero Day Initiative:\n\n**Bulletin #** | **CVE #** | **Digital Vaccine Filter #** | **Status** \n---|---|---|--- \nAPSB17-23 | CVE-2017-3085 | | Local Only \nAPSB17-23 | CVE-2017-3106 | 29353 | \nAPSB17-24 | CVE-2017-3113 | *26537 | \nAPSB17-24 | CVE-2017-3115 | *27233 | \nAPSB17-24 | CVE-2017-3116 | 29354 | \nAPSB17-24 | CVE-2017-3117 | | Vendor Deemed Reproducibility or Exploitation Unlikely \nAPSB17-24 | CVE-2017-3118 | 29358 | \nAPSB17-24 | CVE-2017-3119 | 29359 | \nAPSB17-24 | CVE-2017-3120 | *27751 | \nAPSB17-24 | CVE-2017-3121 | *27948 | \nAPSB17-24 | CVE-2017-3122 | *28005 | \nAPSB17-24 | CVE-2017-3123 | *28032 | \nAPSB17-24 | CVE-2017-3124 | *28034 | \nAPSB17-24 | CVE-2017-11209 | *28035 | \nAPSB17-24 | CVE-2017-11210 | *28092 | \nAPSB17-24 | CVE-2017-11211 | *28218 | \nAPSB17-24 | CVE-2017-11212 | *28100 | \nAPSB17-24 | CVE-2017-11214 | *28216 | \nAPSB17-24 | CVE-2017-11216 | *27821 | \nAPSB17-24 | CVE-2017-11217 | *27812 | \nAPSB17-24 | CVE-2017-11218 | *27753 | \nAPSB17-24 | CVE-2017-11219 | *27820 | \nAPSB17-24 | CVE-2017-11220 | 29360 | \nAPSB17-24 | CVE-2017-11221 | 29413 | \nAPSB17-24 | CVE-2017-11222 | 29352 | \nAPSB17-24 | CVE-2017-11223 | *28202 | \nAPSB17-24 | CVE-2017-11224 | *28202 | \nAPSB17-24 | CVE-2017-11226 | 29349 | \nAPSB17-24 | CVE-2017-11227 | *28473 | \nAPSB17-24 | CVE-2017-11228 | *28475 | \nAPSB17-24 | CVE-2017-11229 | 29361 | \nAPSB17-24 | CVE-2017-11230 | *28476 | \nAPSB17-24 | CVE-2017-11231 | *28478 | \nAPSB17-24 | CVE-2017-11232 | *28479 | \nAPSB17-24 | CVE-2017-11233 | *28481 | \nAPSB17-24 | CVE-2017-11234 | *28543 | \nAPSB17-24 | CVE-2017-11235 | 29362 | \nAPSB17-24 | CVE-2017-11236 | 29363 | \nAPSB17-24 | CVE-2017-11237 | 29370 | \nAPSB17-24 | CVE-2017-11238 | 29371 | \nAPSB17-24 | CVE-2017-11239 | *28544 | \nAPSB17-24 | CVE-2017-11241 | *28547 | \nAPSB17-24 | CVE-2017-11242 | 28480, 28548 | \nAPSB17-24 | CVE-2017-11243 | *28663 | \nAPSB17-24 | CVE-2017-11244 | *28664 | \nAPSB17-24 | CVE-2017-11245 | *28666 | \nAPSB17-24 | CVE-2017-11246 | 29414 | \nAPSB17-24 | CVE-2017-11248 | *28463 | \nAPSB17-24 | CVE-2017-11249 | *28464 | \nAPSB17-24 | CVE-2017-11251 | 29418 | \nAPSB17-24 | CVE-2017-11252 | *28477 | \nAPSB17-24 | CVE-2017-11254 | 29350 | \nAPSB17-24 | CVE-2017-11255 | *28741 | \nAPSB17-24 | CVE-2017-11256 | *28735 | \nAPSB17-24 | CVE-2017-11257 | *28734 | \nAPSB17-24 | CVE-2017-11258 | *28732 | \nAPSB17-24 | CVE-2017-11259 | *28733 | \nAPSB17-24 | CVE-2017-11260 | *28731 | \nAPSB17-24 | CVE-2017-11261 | *28730 | \nAPSB17-24 | CVE-2017-11262 | 29355 | \nAPSB17-24 | CVE-2017-11263 | 29369 | \nAPSB17-24 | CVE-2017-11265 | *28916 | \nAPSB17-24 | CVE-2017-11267 | 29364 | \nAPSB17-24 | CVE-2017-11268 | 29365 | \nAPSB17-24 | CVE-2017-11269 | 29366 | \nAPSB17-24 | CVE-2017-11270 | 29367 | \nAPSB17-24 | CVE-2017-11271 | 29368 | \n \n \n\n**TippingPoint Operating System (TOS) v3.9.2 Release**\n\nEarlier this week, we issued a maintenance release version 3.9.2 build 4784 of the TippingPoint Operating System (TOS) for the N/NX Platform family. For the complete list of enhancements and changes, please refer to the product Release Notes located on the Threat Management center (TMC) Web site at <https://tmc.tippingpoint.com>. Customers with questions or technical assistance can contact the TippingPoint Technical Assistance Center (TAC).\n\n**Zero-Day Filters**\n\nThere are 14 new zero-day filters covering two vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and/or optimize performance. You can browse the list of [published advisories](<http://www.zerodayinitiative.com/advisories/published/>) and [upcoming advisories](<http://www.zerodayinitiative.com/advisories/upcoming/>) on the [Zero Day Initiative](<http://www.zerodayinitiative.com/>) website.\n\n**_Adobe (11)_**\n\n| \n\n * 29362: HTTP: Adobe Acrobat Pro DC ImageConversion JPEG Use-After-Free Vulnerability (ZDI-17-590)\n * 29363: HTTP: Adobe Acrobat Pro DC Forms Information Disclosure Vulnerability (ZDI-17-591)\n * 29364: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-621)\n * 29365: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-622)\n * 29366: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-623)\n * 29367: HTTP: Adobe Acrobat Pro DC ImageConversion Information Disclosure Vulnerability (ZDI-17-625)\n * 29368: HTTP: Adobe Acrobat Pro DC ImageConversion Memory Corruption Vulnerability (ZDI-17-629)\n * 29370: HTTP: Adobe Acrobat Pro DC Font Parsing Information Disclosure Vulnerability (ZDI-17-592)\n * 29371: HTTP: Adobe Acrobat Pro DC ImageConversion EMF Information Disclosure Vulnerability (ZDI-17-593)\n * 29414: HTTP: Adobe Acrobat Pro ImageConversion JPEG Information Disclosure Vulnerability (ZDI-17-603)\n * 29418: HTTP: Adobe Acrobat Pro DC JPEG2000 Memory Corruption Vulnerability (ZDI-17-609)**_ _** \n---|--- \n \n**_ _**\n\n**_Trend Micro (3)_**\n\n| \n\n * 29333: HTTPS: Trend Micro SafeSync for Enterprise replace_local_disk Command Injection (ZDI-17-119)\n * 29337: HTTP: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118)\n * 29338: HTTPS: Trend Micro SafeSync for Enterprise dead_local_disk Command Injection (ZDI-17-118) \n---|--- \n| \n \n**Missed Last Week\u2019s News?**\n\nCatch up on last week\u2019s news in my [weekly recap](<http://blog.trendmicro.com/tippingpoint-threat-intelligence-zero-day-coverage-week-august-7-2017/>).", "title": "TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of August 14, 2017", "cvelist": ["CVE-2017-11209", "CVE-2017-11210", "CVE-2017-11211", "CVE-2017-11212", "CVE-2017-11214", "CVE-2017-11216", "CVE-2017-11217", "CVE-2017-11218", "CVE-2017-11219", "CVE-2017-11220", "CVE-2017-11221", "CVE-2017-11222", "CVE-2017-11223", "CVE-2017-11224", "CVE-2017-11226", "CVE-2017-11227", "CVE-2017-11228", "CVE-2017-11229", "CVE-2017-11230", "CVE-2017-11231", "CVE-2017-11232", "CVE-2017-11233", "CVE-2017-11234", "CVE-2017-11235", "CVE-2017-11236", "CVE-2017-11237", "CVE-2017-11238", "CVE-2017-11239", "CVE-2017-11241", "CVE-2017-11242", "CVE-2017-11243", "CVE-2017-11244", "CVE-2017-11245", "CVE-2017-11246", "CVE-2017-11248", "CVE-2017-11249", "CVE-2017-11251", "CVE-2017-11252", "CVE-2017-11254", "CVE-2017-11255", "CVE-2017-11256", "CVE-2017-11257", "CVE-2017-11258", "CVE-2017-11259", "CVE-2017-11260", "CVE-2017-11261", "CVE-2017-11262", "CVE-2017-11263", "CVE-2017-11265", "CVE-2017-11267", "CVE-2017-11268", "CVE-2017-11269", "CVE-2017-11270", "CVE-2017-11271", "CVE-2017-3085", "CVE-2017-3106", "CVE-2017-3113", "CVE-2017-3115", "CVE-2017-3116", "CVE-2017-3117", "CVE-2017-3118", "CVE-2017-3119", "CVE-2017-3120", "CVE-2017-3121", "CVE-2017-3122", "CVE-2017-3123", "CVE-2017-3124"], "_object_type": "robots.models.rss.RssBulletin", "viewCount": 148, "enchantments": {"score": {"value": 6.6, "vector": "NONE", "modified": "2017-08-24T14:09:47", "rev": 2}, "dependencies": {"references": [{"type": "nessus", "idList": ["ADOBE_ACROBAT_APSB17-24.NASL", "MACOSX_ADOBE_READER_APSB17-24.NASL", "MACOSX_ADOBE_ACROBAT_APSB17-24.NASL", "ADOBE_READER_APSB17-24.NASL", "FLASH_PLAYER_APSB17-23.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310812551", "OPENVAS:1361412562310812550", "OPENVAS:1361412562310812547", "OPENVAS:1361412562310811618", "OPENVAS:1361412562310812548", "OPENVAS:1361412562310811619", "OPENVAS:1361412562310812552", "OPENVAS:1361412562310812554", "OPENVAS:1361412562310812555", "OPENVAS:1361412562310812556"]}, {"type": "kaspersky", "idList": ["KLA11085", "KLA11086"]}, {"type": "cve", "idList": ["CVE-2017-11209", "CVE-2017-11262", "CVE-2017-11211", "CVE-2017-11228", "CVE-2017-11263", "CVE-2017-11219", "CVE-2017-11232", "CVE-2017-11249", "CVE-2017-11210", "CVE-2017-11248"]}, {"type": "seebug", "idList": ["SSV:96452", "SSV:96733"]}, {"type": "freebsd", "idList": ["7E3D3E9A-7D8F-11E7-A02B-D43D7EF03AA6"]}], "modified": "2017-08-24T14:09:47", "rev": 2}, "vulnersScore": 6.6}, "reporter": "Elisa Lippincott (TippingPoint Global Product Marketing)", "bulletinFamily": "blog", "objectVersion": "1.4", "type": "trendmicroblog"}

{"openvas": [{"lastseen": "2019-07-17T14:17:56", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat\n Reader DC (Classic Track) and is prone to multiple vulnerabilities.", "modified": "2019-07-05T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812557", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812557", "title": "Adobe Acrobat Reader DC (Classic Track) Security Updates (apsb17-24) - Mac OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat Reader DC (Classic Track) Security Updates (apsb17-24)-MAC OS X\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_reader_dc_classic\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812557\");\n script_version(\"2019-07-05T08:21:18+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-05 08:21:18 +0000 (Fri, 05 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:49 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat Reader DC (Classic Track) Security Updates (apsb17-24) - Mac OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat\n Reader DC (Classic Track) and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code and\n disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat Reader DC (Classic Track)\n 2015.006.30306 and earlier versions on macosx.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat Reader DC (Classic Track) version\n 2015.006.30355 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_acrobat_reader_dc_classic_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Acrobat/ReaderDC/Classic/MacOSX/Version\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);\nvers = infos['version'];\npath = infos['location'];\n\n##2015.006.30355 == 15.006.30355\nif(version_is_less(version:vers, test_version:\"15.006.30355\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"15.006.30355 (2015.006.30355)\", install_path:path);\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:34:00", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat\n and is prone to multiple vulnerabilities.", "modified": "2019-05-24T00:00:00", "published": "2017-08-10T00:00:00", "id": "OPENVAS:1361412562310811617", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310811617", "title": "Adobe Acrobat Security Updates(apsb17-24)-MAC OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat Security Updates(apsb17-24)-MAC OS X\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.811617\");\n script_version(\"2019-05-24T11:20:30+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_bugtraq_id(100179, 97556, 100182, 100187, 100180, 100189, 100184, 100181,\n 100186, 100185);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-05-24 11:20:30 +0000 (Fri, 24 May 2019)\");\n script_tag(name:\"creation_date\", value:\"2017-08-10 10:47:06 +0530 (Thu, 10 Aug 2017)\");\n script_name(\"Adobe Acrobat Security Updates(apsb17-24)-MAC OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple Security Bypass vulnerabilities.\n\n - Multiple Type Confusion vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this vulnerability\n will allow remote attackers to execute arbitrary code remotely and can get\n hands on sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat version 11.x before 11.0.21\n on MAC OS X.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat version 11.0.21 or\n later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Acrobat/MacOSX/Version\");\n\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!readerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_in_range(version:readerVer, test_version:\"11.0\", test_version2:\"11.0.20\"))\n{\n report = report_fixed_ver(installed_version:readerVer, fixed_version:\"11.0.21\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-07-17T14:18:14", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat\n Reader DC (Continuous Track) and is prone to multiple vulnerabilities.", "modified": "2019-07-05T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812553", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812553", "title": "Adobe Acrobat Reader DC (Continuous Track) Security Updates (apsb17-24) - Mac OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat Reader DC (Continuous Track) Security Updates (apsb17-24)-MAC OS X\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_reader_dc_continuous\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812553\");\n script_version(\"2019-07-05T08:21:18+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-05 08:21:18 +0000 (Fri, 05 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:31 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat Reader DC (Continuous Track) Security Updates (apsb17-24) - Mac OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat\n Reader DC (Continuous Track) and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code and\n disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat Reader DC (Continuous Track)\n 2017.009.20058 and earlier versions on macosx.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat Reader DC (Continuous Track)\n version 2017.012.20098 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_acrobat_reader_dc_cont_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Acrobat/ReaderDC/Continuous/MacOSX/Version\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);\nvers = infos['version'];\npath = infos['location'];\n\n##2017.012.20098 == 17.012.20098\nif(version_is_less(version:vers, test_version:\"17.012.20098\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"17.012.20098 (2017.012.20098)\", install_path:path);\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-07-17T14:17:33", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat\n Reader 2017 and is prone to multiple vulnerabilities.", "modified": "2019-07-16T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812549", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812549", "title": "Adobe Acrobat Reader 2017 Security Updates(apsb17-24)-MAC OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat Reader 2017 Security Updates(apsb17-24)-MAC OS X\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_reader\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812549\");\n script_version(\"2019-07-16T10:51:36+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-16 10:51:36 +0000 (Tue, 16 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:15 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat Reader 2017 Security Updates(apsb17-24)-MAC OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat\n Reader 2017 and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code\n and disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat Reader 2017.008.30051 and earlier on macosx.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Reader 2017 version\n 2017.011.30066 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Reader/MacOSX/Version\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))\n exit(0);\n\nvers = infos['version'];\npath = infos['location'];\n\n##2017.011.30065 == 17.011.30065\nif(version_in_range(version:vers, test_version:\"17.0\", test_version2:\"17.011.30065\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"17.011.30066 (2017.011.30066)\", install_path:path);\n security_message(data:report);\n exit(0);\n}\n\nexit(99);\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-07-17T14:18:02", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat 2017\n and is prone to multiple vulnerabilities.", "modified": "2019-07-16T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812546", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812546", "title": "Adobe Acrobat 2017 Security Updates(apsb17-24)-Windows", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat 2017 Security Updates(apsb17-24)-Windows\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812546\");\n script_version(\"2019-07-16T10:51:36+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-16 10:51:36 +0000 (Tue, 16 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:15 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat 2017 Security Updates(apsb17-24)-Windows\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat 2017\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code and\n disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat 2017.008.30051 and earlier\n versions on windows.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat 2017 version\n 2017.011.30066 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"registry\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_win.nasl\");\n script_mandatory_keys(\"Adobe/Acrobat/Win/Ver\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE))\n exit(0);\n\nvers = infos['version'];\npath = infos['location'];\n\n##2017.011.30066 == 17.011.30066\nif(version_in_range(version:vers, test_version:\"17.0\", test_version2:\"17.011.30065\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"17.011.30066 (2017.011.30066)\", install_path:path);\n security_message(data:report);\n exit(0);\n}\n\nexit(99);", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:33:58", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat\n and is prone to multiple vulnerabilities.", "modified": "2019-05-24T00:00:00", "published": "2017-08-10T00:00:00", "id": "OPENVAS:1361412562310811622", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310811622", "title": "Adobe Acrobat Security Updates(apsb17-24)-Windows", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat Security Updates(apsb17-24)-Windows\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.811622\");\n script_version(\"2019-05-24T11:20:30+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_bugtraq_id(100179, 97556, 100182, 100187, 100180, 100189, 100184, 100181,\n 100186, 100185);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-05-24 11:20:30 +0000 (Fri, 24 May 2019)\");\n script_tag(name:\"creation_date\", value:\"2017-08-10 10:47:06 +0530 (Thu, 10 Aug 2017)\");\n script_name(\"Adobe Acrobat Security Updates(apsb17-24)-Windows\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple Security Bypass vulnerabilities.\n\n - Multiple Type Confusion vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this vulnerability\n will allow remote attackers to execute arbitrary code remotely and can get\n hands on sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat version 11.x before 11.0.21\n on Windows.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat version 11.0.21 or\n later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"registry\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_win.nasl\");\n script_mandatory_keys(\"Adobe/Acrobat/Win/Installed\");\n\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!readerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_in_range(version:readerVer, test_version:\"11.0\", test_version2:\"11.0.20\"))\n{\n report = report_fixed_ver(installed_version:readerVer, fixed_version:\"11.0.21\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-07-17T14:18:19", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat DC (Continuous Track)\n and is prone to multiple vulnerabilities.", "modified": "2019-07-05T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812550", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812550", "title": "Adobe Acrobat DC (Continuous Track) Security Updates (apsb17-24) - Windows", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat DC (Continuous Track) Security Updates (apsb17-24)-Windows\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_dc_continuous\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812550\");\n script_version(\"2019-07-05T08:21:18+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-05 08:21:18 +0000 (Fri, 05 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:31 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat DC (Continuous Track) Security Updates (apsb17-24) - Windows\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat DC (Continuous Track)\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code and\n disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat DC (Continuous Track) 2017.009.20058\n and earlier versions on Windows.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat DC (Continuous Track) version\n 2017.012.20098 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"registry\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_acrobat_dc_cont_detect_win.nasl\");\n script_mandatory_keys(\"Adobe/AcrobatDC/Continuous/Win/Ver\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);\nvers = infos['version'];\npath = infos['location'];\n\n##2017.012.20098 == 17.012.20098\nif(version_is_less(version:vers, test_version:\"17.012.20098\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"17.012.20098 (2017.012.20098)\", install_path:path);\n security_message(data:report);\n exit(0);\n}", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-07-17T14:18:08", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat DC (Continuous Track)\n and is prone to multiple vulnerabilities.", "modified": "2019-07-05T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812551", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812551", "title": "Adobe Acrobat DC (Continuous Track) Security Updates (apsb17-24) - Mac OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat DC (Continuous Track) Security Updates (apsb17-24)-MAC OS X\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_dc_continuous\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812551\");\n script_version(\"2019-07-05T08:21:18+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-05 08:21:18 +0000 (Fri, 05 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:31 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat DC (Continuous Track) Security Updates (apsb17-24) - Mac OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat DC (Continuous Track)\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code and\n disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat DC (Continuous Track) 2017.009.20058\n and earlier versions on macosx.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat DC (Continuous Track) version\n 2017.012.20098 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_acrobat_dc_cont_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/AcrobatDC/Continuous/MacOSX/Version\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);\nvers = infos['version'];\npath = infos['location'];\n\n##2017.012.20098 == 17.012.20098\nif(version_is_less(version:vers, test_version:\"17.012.20098\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"17.012.20098 (2017.012.20098)\", install_path:path);\n security_message(data:report);\n exit(0);\n}", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-05-29T18:34:06", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Reader\n and is prone to multiple vulnerabilities.", "modified": "2019-05-24T00:00:00", "published": "2017-08-10T00:00:00", "id": "OPENVAS:1361412562310811619", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310811619", "title": "Adobe Reader Security Updates(apsb17-24)-MAC OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Reader Security Updates(apsb17-24)-MAC OS X\n#\n# Authors:\n# Kashinath T <tkashinath@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_reader\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.811619\");\n script_version(\"2019-05-24T11:20:30+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_bugtraq_id(100179, 97556, 100182, 100187, 100180, 100189, 100184, 100181,\n 100186, 100185);\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-05-24 11:20:30 +0000 (Fri, 24 May 2019)\");\n script_tag(name:\"creation_date\", value:\"2017-08-10 10:47:06 +0530 (Thu, 10 Aug 2017)\");\n script_name(\"Adobe Reader Security Updates(apsb17-24)-MAC OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Reader\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"Multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple Security Bypass vulnerabilities.\n\n - Multiple Type Confusion vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of this vulnerability\n will allow remote attackers to execute arbitrary code remotely and can get\n hands on sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Reader version 11.x before 11.0.21\n on MAC OS X.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Reader version 11.0.21 or\n later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"secpod_adobe_prdts_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/Reader/MacOSX/Version\");\n\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!readerVer = get_app_version(cpe:CPE)){\n exit(0);\n}\n\nif(version_in_range(version:readerVer, test_version:\"11.0\", test_version2:\"11.0.20\"))\n{\n report = report_fixed_ver(installed_version:readerVer, fixed_version:\"11.0.21\");\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-07-17T14:18:16", "bulletinFamily": "scanner", "description": "This host is installed with Adobe Acrobat DC (Classic Track)\n and is prone to multiple vulnerabilities.", "modified": "2019-07-05T00:00:00", "published": "2018-03-09T00:00:00", "id": "OPENVAS:1361412562310812555", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310812555", "title": "Adobe Acrobat DC (Classic Track) Security Updates (apsb17-24) - Mac OS X", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Adobe Acrobat DC (Classic Track) Security Updates (apsb17-24)-MAC OS X\n#\n# Authors:\n# Antu Sanadi <santu@secpod.com>\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nCPE = \"cpe:/a:adobe:acrobat_dc_classic\";\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.812555\");\n script_version(\"2019-07-05T08:21:18+0000\");\n script_cve_id(\"CVE-2017-3016\", \"CVE-2017-3038\", \"CVE-2017-3113\", \"CVE-2017-3115\",\n \"CVE-2017-3116\", \"CVE-2017-3117\", \"CVE-2017-3118\", \"CVE-2017-3119\",\n \"CVE-2017-3120\", \"CVE-2017-3121\", \"CVE-2017-3122\", \"CVE-2017-3123\",\n \"CVE-2017-3124\", \"CVE-2017-11209\", \"CVE-2017-11210\", \"CVE-2017-11211\",\n \"CVE-2017-11212\", \"CVE-2017-11214\", \"CVE-2017-11216\", \"CVE-2017-11217\",\n \"CVE-2017-11218\", \"CVE-2017-11219\", \"CVE-2017-11220\", \"CVE-2017-11221\",\n \"CVE-2017-11222\", \"CVE-2017-11223\", \"CVE-2017-11224\", \"CVE-2017-11226\",\n \"CVE-2017-11227\", \"CVE-2017-11228\", \"CVE-2017-11229\", \"CVE-2017-11230\",\n \"CVE-2017-11231\", \"CVE-2017-11232\", \"CVE-2017-11233\", \"CVE-2017-11234\",\n \"CVE-2017-11235\", \"CVE-2017-11236\", \"CVE-2017-11237\", \"CVE-2017-11238\",\n \"CVE-2017-11239\", \"CVE-2017-11241\", \"CVE-2017-11242\", \"CVE-2017-11243\",\n \"CVE-2017-11244\", \"CVE-2017-11245\", \"CVE-2017-11246\", \"CVE-2017-11248\",\n \"CVE-2017-11249\", \"CVE-2017-11251\", \"CVE-2017-11252\", \"CVE-2017-11254\",\n \"CVE-2017-11255\", \"CVE-2017-11256\", \"CVE-2017-11257\", \"CVE-2017-11258\",\n \"CVE-2017-11259\", \"CVE-2017-11260\", \"CVE-2017-11261\", \"CVE-2017-11262\",\n \"CVE-2017-11263\", \"CVE-2017-11265\", \"CVE-2017-11267\", \"CVE-2017-11268\",\n \"CVE-2017-11269\", \"CVE-2017-11270\", \"CVE-2017-11271\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"last_modification\", value:\"2019-07-05 08:21:18 +0000 (Fri, 05 Jul 2019)\");\n script_tag(name:\"creation_date\", value:\"2018-03-09 13:25:49 +0530 (Fri, 09 Mar 2018)\");\n script_name(\"Adobe Acrobat DC (Classic Track) Security Updates (apsb17-24) - Mac OS X\");\n\n script_tag(name:\"summary\", value:\"This host is installed with Adobe Acrobat DC (Classic Track)\n and is prone to multiple vulnerabilities.\");\n\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n\n script_tag(name:\"insight\", value:\"The multiple flaws exists due to,\n\n - Multiple memory corruption vulnerabilities.\n\n - Multiple use after free vulnerabilities.\n\n - Multiple heap overflow vulnerabilities.\n\n - Multiple security bypass vulnerabilities.\n\n - Multiple type confusion errors.\n\n - An insufficient verification of data authenticity.\");\n\n script_tag(name:\"impact\", value:\"Successful exploitation of these\n vulnerabilities will allow remote attackers to execute arbitrary code and\n disclose sensitive information.\");\n\n script_tag(name:\"affected\", value:\"Adobe Acrobat DC (Classic Track) 2015.006.30306\n and earlier versions on macosx.\");\n\n script_tag(name:\"solution\", value:\"Upgrade to Adobe Acrobat DC (Classic Track) version\n 2015.006.30355 or later.\");\n\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"executable_version\");\n script_xref(name:\"URL\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"General\");\n script_dependencies(\"gb_adobe_acrobat_dc_classic_detect_macosx.nasl\");\n script_mandatory_keys(\"Adobe/AcrobatDC/Classic/MacOSX/Version\");\n exit(0);\n}\n\ninclude(\"host_details.inc\");\ninclude(\"version_func.inc\");\n\nif(!infos = get_app_version_and_location(cpe:CPE, exit_no_version:TRUE)) exit(0);\nvers = infos['version'];\npath = infos['location'];\n\n##2015.006.30355 == 15.006.30355\nif(version_is_less(version:vers, test_version:\"15.006.30355\")) {\n report = report_fixed_ver(installed_version:vers, fixed_version:\"15.006.30355 (2015.006.30355)\", install_path:path);\n security_message(data:report);\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}], "kaspersky": [{"lastseen": "2019-03-21T00:15:21", "bulletinFamily": "info", "description": "### *Detect date*:\n08/08/2017\n\n### *Severity*:\nCritical\n\n### *Description*:\nMultiple serious vulnerabilities have been found in Adobe Acrobat and Adobe Reader. Malicious users can exploit these vulnerabilities to obtain sensitive information or execute arbitrary code.\n\n### *Affected products*:\nAdobe Reader XI earlier than 11.0.21 \nAdobe Acrobat XI earlier than 11.0.21 \nAdobe Acrobat 2017 earlier than 17.011.30066 \nAdobe Acrobat Reader 2017 earlier than 17 17.011.30066 \nAdobe Acrobat DC Classic earlier than 15.006.30355 \nAdobe Acrobat DC Continuous earlier than 17.012.20098 \nAdobe Acrobat Reader DC Classic earlier than 15.006.30355 \nAdobe Acrobat Reader DC Continuous earlier than 17.012.20098 \n\n### *Solution*:\nUpdate to the latest versions \n[Get Adobe Acrobat DC](<http://supportdownloads.adobe.com/product.jsp?product=1&platform=Windows>) \n[Get Adobe Acrobat Reader DC](<https://get.adobe.com/reader/>) \n[Get Adobe Reader XI](<http://supportdownloads.adobe.com/product.jsp?product=10&platform=Windows>)\n\n### *Original advisories*:\n[Adobe Security Bulletin](<https://helpx.adobe.com/security/products/acrobat/apsb17-24.html>) \n[Update to Security Bulletin](<http://blogs.adobe.com/psirt/?p=1484>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[Adobe Reader](<https://threats.kaspersky.com/en/product/Adobe-Reader/>)\n\n### *CVE-IDS*:\n[CVE-2017-3038](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3038>)9.3Critical \n[CVE-2017-11221](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11221>)9.3Critical \n[CVE-2017-11222](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11222>)9.3Critical \n[CVE-2017-11223](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11223>)9.3Critical \n[CVE-2017-11224](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11224>)9.3Critical \n[CVE-2017-11226](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11226>)9.3Critical \n[CVE-2017-11227](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11227>)9.3Critical \n[CVE-2017-11228](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11228>)9.3Critical \n[CVE-2017-11229](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11229>)6.8Critical \n[CVE-2017-11230](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11230>)4.3Critical \n[CVE-2017-11231](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11231>)9.3Critical \n[CVE-2017-11232](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11232>)4.3Critical \n[CVE-2017-11233](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11233>)4.3Critical \n[CVE-2017-11234](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11234>)9.3Critical \n[CVE-2017-11235](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11235>)9.3Critical \n[CVE-2017-11236](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11236>)4.3Critical \n[CVE-2017-11237](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11237>)9.3Critical \n[CVE-2017-11238](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11238>)4.3Critical \n[CVE-2017-11239](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11239>)4.3Critical \n[CVE-2017-11241](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11241>)9.3Critical \n[CVE-2017-11242](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11242>)4.3Critical \n[CVE-2017-11243](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11243>)4.3Critical \n[CVE-2017-11244](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11244>)4.3Critical \n[CVE-2017-11245](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11245>)4.3Critical \n[CVE-2017-11246](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11246>)4.3Critical \n[CVE-2017-11248](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11248>)4.3Critical \n[CVE-2017-11249](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11249>)4.3Critical \n[CVE-2017-11251](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11251>)9.3Critical \n[CVE-2017-11252](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11252>)4.3Critical \n[CVE-2017-11254](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11254>)6.8Critical \n[CVE-2017-11255](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11255>)4.3Critical \n[CVE-2017-11256](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11256>)9.3Critical \n[CVE-2017-11257](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11257>)9.3Critical \n[CVE-2017-11258](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11258>)4.3Critical \n[CVE-2017-11259](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11259>)9.3Critical \n[CVE-2017-11260](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11260>)9.3Critical \n[CVE-2017-11261](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11261>)9.3Critical \n[CVE-2017-11262](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11262>)9.3Critical \n[CVE-2017-11263](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11263>)6.8Critical \n[CVE-2017-11265](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11265>)4.3Critical \n[CVE-2017-11267](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11267>)9.3Critical \n[CVE-2017-11268](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11268>)9.3Critical \n[CVE-2017-11269](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11269>)9.3Critical \n[CVE-2017-11270](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11270>)9.3Critical \n[CVE-2017-11271](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11271>)9.3Critical \n[CVE-2017-3016](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3016>)9.3Critical \n[CVE-2017-3113](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3113>)9.3Critical \n[CVE-2017-3115](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3115>)4.3Critical \n[CVE-2017-3116](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3116>)9.3Critical \n[CVE-2017-3117](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3117>)9.3Critical \n[CVE-2017-3118](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3118>)4.3Critical \n[CVE-2017-3119](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3119>)6.8Critical \n[CVE-2017-3120](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3120>)9.3Critical \n[CVE-2017-3121](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3121>)9.3Critical \n[CVE-2017-3122](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3122>)4.3Critical \n[CVE-2017-3123](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3123>)9.3Critical \n[CVE-2017-3124](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3124>)10.0Critical \n[CVE-2017-11209](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11209>)4.3Critical \n[CVE-2017-11210](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11210>)4.3Critical \n[CVE-2017-11211](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11211>)9.3Critical \n[CVE-2017-11212](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11212>)9.3Critical \n[CVE-2017-11214](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11214>)9.3Critical \n[CVE-2017-11216](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11216>)9.3Critical \n[CVE-2017-11217](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11217>)4.3Critical \n[CVE-2017-11218](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11218>)9.3Critical \n[CVE-2017-11219](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11219>)9.3Critical \n[CVE-2017-11220](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11220>)9.3Critical", "modified": "2019-03-07T00:00:00", "published": "2017-08-08T00:00:00", "id": "KLA11086", "href": "https://threats.kaspersky.com/en/vulnerability/KLA11086", "title": "\r KLA11086Multiple vulnerabilities in Adobe Acrobat and Adobe Reader ", "type": "kaspersky", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2019-03-21T00:14:54", "bulletinFamily": "info", "description": "### *Detect date*:\n08/08/2017\n\n### *Severity*:\nCritical\n\n### *Description*:\nMultiple serious vulnerabilities have been found in Adobe Flash Player versions earlier than 26.0.0.151. Malicious users can exploit these vulnerabilities to obtain sensitive information and execute arbitrary code.\n\n### *Affected products*:\nAdobe Flash Player versions earlier than 26.0.0.151\n\n### *Solution*:\nUpdate to the latest versions \n[Download Adobe Flash Player](<https://get.adobe.com/flashplayer/>)\n\n### *Original advisories*:\n[Adobe Security Bulletin](<https://helpx.adobe.com/security/products/flash-player/apsb17-23.html>) \n\n\n### *Impacts*:\nACE \n\n### *Related products*:\n[Adobe Flash Player ActiveX](<https://threats.kaspersky.com/en/product/Adobe-Flash-Player-ActiveX/>)\n\n### *CVE-IDS*:\n[CVE-2017-3085](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3085>)5.0Critical \n[CVE-2017-3106](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3106>)9.3Critical", "modified": "2019-03-07T00:00:00", "published": "2017-08-08T00:00:00", "id": "KLA11085", "href": "https://threats.kaspersky.com/en/vulnerability/KLA11085", "title": "\r KLA11085Multiple vulnerabilities in Adobe Flash Player ", "type": "kaspersky", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2020-08-01T03:06:13", "bulletinFamily": "scanner", "description": "The version of Adobe Acrobat installed on the remote macOS or Mac OS X\nhost is a version prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application", "modified": "2020-08-02T00:00:00", "id": "MACOSX_ADOBE_ACROBAT_APSB17-24.NASL", "href": "https://www.tenable.com/plugins/nessus/102429", "published": "2017-08-11T00:00:00", "title": "Adobe Acrobat < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24) (macOS)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102429);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2019/04/19 10:12:36\");\n\n script_cve_id(\n \"CVE-2017-3016\",\n \"CVE-2017-3038\",\n \"CVE-2017-3113\",\n \"CVE-2017-3115\",\n \"CVE-2017-3116\",\n \"CVE-2017-3117\",\n \"CVE-2017-3118\",\n \"CVE-2017-3119\",\n \"CVE-2017-3120\",\n \"CVE-2017-3121\",\n \"CVE-2017-3122\",\n \"CVE-2017-3123\",\n \"CVE-2017-3124\",\n \"CVE-2017-11209\",\n \"CVE-2017-11210\",\n \"CVE-2017-11211\",\n \"CVE-2017-11212\",\n \"CVE-2017-11214\",\n \"CVE-2017-11216\",\n \"CVE-2017-11217\",\n \"CVE-2017-11218\",\n \"CVE-2017-11219\",\n \"CVE-2017-11220\",\n \"CVE-2017-11221\",\n \"CVE-2017-11222\",\n \"CVE-2017-11223\",\n \"CVE-2017-11224\",\n \"CVE-2017-11226\",\n \"CVE-2017-11227\",\n \"CVE-2017-11228\",\n \"CVE-2017-11229\",\n \"CVE-2017-11230\",\n \"CVE-2017-11231\",\n \"CVE-2017-11232\",\n \"CVE-2017-11233\",\n \"CVE-2017-11234\",\n \"CVE-2017-11235\",\n \"CVE-2017-11236\",\n \"CVE-2017-11237\",\n \"CVE-2017-11238\",\n \"CVE-2017-11239\",\n \"CVE-2017-11241\",\n \"CVE-2017-11242\",\n \"CVE-2017-11243\",\n \"CVE-2017-11244\",\n \"CVE-2017-11245\",\n \"CVE-2017-11246\",\n \"CVE-2017-11248\",\n \"CVE-2017-11249\",\n \"CVE-2017-11251\",\n \"CVE-2017-11252\",\n \"CVE-2017-11254\",\n \"CVE-2017-11255\",\n \"CVE-2017-11256\",\n \"CVE-2017-11257\",\n \"CVE-2017-11258\",\n \"CVE-2017-11259\",\n \"CVE-2017-11260\",\n \"CVE-2017-11261\",\n \"CVE-2017-11262\",\n \"CVE-2017-11263\",\n \"CVE-2017-11265\",\n \"CVE-2017-11267\",\n \"CVE-2017-11268\",\n \"CVE-2017-11269\",\n \"CVE-2017-11270\",\n \"CVE-2017-11271\"\n );\n script_bugtraq_id(\n 100179,\n 100180,\n 100181,\n 100182,\n 100184,\n 100185,\n 100186,\n 100187,\n 100189\n );\n\n script_name(english:\"Adobe Acrobat < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24) (macOS)\");\n script_summary(english:\"Checks the version of Adobe Acrobat.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The version of Adobe Acrobat installed on the remote host is affected\nby multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Adobe Acrobat installed on the remote macOS or Mac OS X\nhost is a version prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Acrobat 11.0.21 / 2015.006.30355 / 2017.011.30066\n/ 2017.012.20098 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2017-3124\"); \n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/11\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:acrobat\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"macosx_adobe_acrobat_installed.nbin\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/MacOSX/Version\", \"installed_sw/Adobe Acrobat\");\n\n exit(0);\n}\n\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nget_kb_item_or_exit(\"Host/local_checks_enabled\");\nos = get_kb_item(\"Host/MacOSX/Version\");\nif (empty_or_null(os)) audit(AUDIT_OS_NOT, \"Mac OS X\");\n\napp_info = vcf::get_app_info(app:\"Adobe Acrobat\");\n\n constraints = [\n { \"min_version\" : \"11\", \"fixed_version\" : \"11.0.21\" },\n { \"min_version\" : \"15.6\", \"fixed_version\" : \"15.6.30355\" },\n { \"min_version\" : \"15.7\", \"fixed_version\" : \"17.12.20098\" },\n { \"min_version\" : \"17.8\", \"fixed_version\" : \"17.11.30066\" }\n ];\nvcf::adobe_reader::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE, max_segs:3);", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-01T03:06:33", "bulletinFamily": "scanner", "description": "The version of Adobe Reader installed on the remote macOS or Mac OS X\nhost is a version prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application", "modified": "2020-08-02T00:00:00", "id": "MACOSX_ADOBE_READER_APSB17-24.NASL", "href": "https://www.tenable.com/plugins/nessus/102430", "published": "2017-08-11T00:00:00", "title": "Adobe Reader < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24) (macOS)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102430);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/11/12\");\n\n script_cve_id(\n \"CVE-2017-3016\",\n \"CVE-2017-3038\",\n \"CVE-2017-3113\",\n \"CVE-2017-3115\",\n \"CVE-2017-3116\",\n \"CVE-2017-3117\",\n \"CVE-2017-3118\",\n \"CVE-2017-3119\",\n \"CVE-2017-3120\",\n \"CVE-2017-3121\",\n \"CVE-2017-3122\",\n \"CVE-2017-3123\",\n \"CVE-2017-3124\",\n \"CVE-2017-11209\",\n \"CVE-2017-11210\",\n \"CVE-2017-11211\",\n \"CVE-2017-11212\",\n \"CVE-2017-11214\",\n \"CVE-2017-11216\",\n \"CVE-2017-11217\",\n \"CVE-2017-11218\",\n \"CVE-2017-11219\",\n \"CVE-2017-11220\",\n \"CVE-2017-11221\",\n \"CVE-2017-11222\",\n \"CVE-2017-11223\",\n \"CVE-2017-11224\",\n \"CVE-2017-11226\",\n \"CVE-2017-11227\",\n \"CVE-2017-11228\",\n \"CVE-2017-11229\",\n \"CVE-2017-11230\",\n \"CVE-2017-11231\",\n \"CVE-2017-11232\",\n \"CVE-2017-11233\",\n \"CVE-2017-11234\",\n \"CVE-2017-11235\",\n \"CVE-2017-11236\",\n \"CVE-2017-11237\",\n \"CVE-2017-11238\",\n \"CVE-2017-11239\",\n \"CVE-2017-11241\",\n \"CVE-2017-11242\",\n \"CVE-2017-11243\",\n \"CVE-2017-11244\",\n \"CVE-2017-11245\",\n \"CVE-2017-11246\",\n \"CVE-2017-11248\",\n \"CVE-2017-11249\",\n \"CVE-2017-11251\",\n \"CVE-2017-11252\",\n \"CVE-2017-11254\",\n \"CVE-2017-11255\",\n \"CVE-2017-11256\",\n \"CVE-2017-11257\",\n \"CVE-2017-11258\",\n \"CVE-2017-11259\",\n \"CVE-2017-11260\",\n \"CVE-2017-11261\",\n \"CVE-2017-11262\",\n \"CVE-2017-11263\",\n \"CVE-2017-11265\",\n \"CVE-2017-11267\",\n \"CVE-2017-11268\",\n \"CVE-2017-11269\",\n \"CVE-2017-11270\",\n \"CVE-2017-11271\"\n );\n script_bugtraq_id(\n 100179,\n 100180,\n 100181,\n 100182,\n 100184,\n 100185,\n 100186,\n 100187,\n 100189\n );\n\n script_name(english:\"Adobe Reader < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24) (macOS)\");\n script_summary(english:\"Checks the version of Adobe Reader.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The version of Adobe Reader installed on the remote host is affected\nby multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Adobe Reader installed on the remote macOS or Mac OS X\nhost is a version prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Reader 11.0.21 / 2015.006.30355 / 2017.011.30066\n/ 2017.012.20098 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2017-3124\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/11\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:acrobat_reader\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"macosx_adobe_reader_installed.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/MacOSX/Version\", \"installed_sw/Adobe Reader\");\n\n exit(0);\n}\n\ninclude(\"vcf.inc\");\n\nget_kb_item_or_exit(\"Host/local_checks_enabled\");\nos = get_kb_item(\"Host/MacOSX/Version\");\nif (empty_or_null(os)) audit(AUDIT_OS_NOT, \"Mac OS X\");\n\napp_info = vcf::get_app_info(app:\"Adobe Reader\");\nbase_dir = app_info['path'] - \"/Applications\";\ntrack = get_kb_item(\"MacOSX/Adobe_Reader\"+base_dir+\"/Track\");\n\nif (!isnull(track) && track == '2017')\n{\n constraints = [\n { \"min_version\" : \"17.8\", \"fixed_version\" : \"17.11.30066\" }\n ];\n\n}\nelse\n{\n constraints = [\n { \"min_version\" : \"11\", \"fixed_version\" : \"11.0.21\" },\n { \"min_version\" : \"15.6\", \"fixed_version\" : \"15.6.30355\" },\n { \"min_version\" : \"15.7\", \"fixed_version\" : \"17.12.20098\" }\n ];\n}\n\nvcf::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE);\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-01T01:02:41", "bulletinFamily": "scanner", "description": "The version of Adobe Reader installed on the remote Windows host is a\nversion prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application", "modified": "2020-08-02T00:00:00", "id": "ADOBE_READER_APSB17-24.NASL", "href": "https://www.tenable.com/plugins/nessus/102428", "published": "2017-08-11T00:00:00", "title": "Adobe Reader < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102428);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2019/11/12\");\n\n script_cve_id(\n \"CVE-2017-3016\",\n \"CVE-2017-3038\",\n \"CVE-2017-3113\",\n \"CVE-2017-3115\",\n \"CVE-2017-3116\",\n \"CVE-2017-3117\",\n \"CVE-2017-3118\",\n \"CVE-2017-3119\",\n \"CVE-2017-3120\",\n \"CVE-2017-3121\",\n \"CVE-2017-3122\",\n \"CVE-2017-3123\",\n \"CVE-2017-3124\",\n \"CVE-2017-11209\",\n \"CVE-2017-11210\",\n \"CVE-2017-11211\",\n \"CVE-2017-11212\",\n \"CVE-2017-11214\",\n \"CVE-2017-11216\",\n \"CVE-2017-11217\",\n \"CVE-2017-11218\",\n \"CVE-2017-11219\",\n \"CVE-2017-11220\",\n \"CVE-2017-11221\",\n \"CVE-2017-11222\",\n \"CVE-2017-11223\",\n \"CVE-2017-11224\",\n \"CVE-2017-11226\",\n \"CVE-2017-11227\",\n \"CVE-2017-11228\",\n \"CVE-2017-11229\",\n \"CVE-2017-11230\",\n \"CVE-2017-11231\",\n \"CVE-2017-11232\",\n \"CVE-2017-11233\",\n \"CVE-2017-11234\",\n \"CVE-2017-11235\",\n \"CVE-2017-11236\",\n \"CVE-2017-11237\",\n \"CVE-2017-11238\",\n \"CVE-2017-11239\",\n \"CVE-2017-11241\",\n \"CVE-2017-11242\",\n \"CVE-2017-11243\",\n \"CVE-2017-11244\",\n \"CVE-2017-11245\",\n \"CVE-2017-11246\",\n \"CVE-2017-11248\",\n \"CVE-2017-11249\",\n \"CVE-2017-11251\",\n \"CVE-2017-11252\",\n \"CVE-2017-11254\",\n \"CVE-2017-11255\",\n \"CVE-2017-11256\",\n \"CVE-2017-11257\",\n \"CVE-2017-11258\",\n \"CVE-2017-11259\",\n \"CVE-2017-11260\",\n \"CVE-2017-11261\",\n \"CVE-2017-11262\",\n \"CVE-2017-11263\",\n \"CVE-2017-11265\",\n \"CVE-2017-11267\",\n \"CVE-2017-11268\",\n \"CVE-2017-11269\",\n \"CVE-2017-11270\",\n \"CVE-2017-11271\"\n );\n script_bugtraq_id(\n 100179,\n 100180,\n 100181,\n 100182,\n 100184,\n 100185,\n 100186,\n 100187,\n 100189\n );\n\n script_name(english:\"Adobe Reader < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24)\");\n script_summary(english:\"Checks the version of Adobe Reader.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The version of Adobe Reader installed on the remote Windows host is\naffected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Adobe Reader installed on the remote Windows host is a\nversion prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-24.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Reader 11.0.21 / 2015.006.30355 / 2017.011.30066\n/ 2017.012.20098 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2017-3124\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/11\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:acrobat_reader\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"adobe_reader_installed.nasl\");\n script_require_keys(\"SMB/Registry/Enumerated\", \"installed_sw/Adobe Reader\");\n\n exit(0);\n}\n\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nget_kb_item_or_exit(\"SMB/Registry/Enumerated\");\n\napp_info = vcf::adobe_reader::get_app_info();\nconstraints = [\n { \"min_version\" : \"11.0\", \"fixed_version\" : \"11.0.21\" },\n { \"min_version\" : \"15.6\", \"max_version\" : \"15.6.30306\", \"fixed_version\" : \"15.6.30355\" },\n { \"min_version\" : \"17.8\", \"max_version\" : \"17.8.30051\", \"fixed_version\" : \"17.11.30066\" },\n { \"min_version\" : \"15.7\", \"max_version\" : \"17.9.20058\", \"fixed_version\" : \"17.12.20098\" }\n];\n# using adobe_reader namespace check_version_and_report to properly detect Continuous vs Classic, \n# and limit ver segments to 3 (18.x.y vs 18.x.y.12345) with max_segs:3\nvcf::adobe_reader::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE, max_segs:3);\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-01T01:02:17", "bulletinFamily": "scanner", "description": "The version of Adobe Acrobat installed on the remote Windows host is a\nversion prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application", "modified": "2020-08-02T00:00:00", "id": "ADOBE_ACROBAT_APSB17-24.NASL", "href": "https://www.tenable.com/plugins/nessus/102427", "published": "2017-08-11T00:00:00", "title": "Adobe Acrobat < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102427);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2019/11/12\");\n\n script_cve_id(\n \"CVE-2017-3016\",\n \"CVE-2017-3038\",\n \"CVE-2017-3113\",\n \"CVE-2017-3115\",\n \"CVE-2017-3116\",\n \"CVE-2017-3117\",\n \"CVE-2017-3118\",\n \"CVE-2017-3119\",\n \"CVE-2017-3120\",\n \"CVE-2017-3121\",\n \"CVE-2017-3122\",\n \"CVE-2017-3123\",\n \"CVE-2017-3124\",\n \"CVE-2017-11209\",\n \"CVE-2017-11210\",\n \"CVE-2017-11211\",\n \"CVE-2017-11212\",\n \"CVE-2017-11214\",\n \"CVE-2017-11216\",\n \"CVE-2017-11217\",\n \"CVE-2017-11218\",\n \"CVE-2017-11219\",\n \"CVE-2017-11220\",\n \"CVE-2017-11221\",\n \"CVE-2017-11222\",\n \"CVE-2017-11223\",\n \"CVE-2017-11224\",\n \"CVE-2017-11226\",\n \"CVE-2017-11227\",\n \"CVE-2017-11228\",\n \"CVE-2017-11229\",\n \"CVE-2017-11230\",\n \"CVE-2017-11231\",\n \"CVE-2017-11232\",\n \"CVE-2017-11233\",\n \"CVE-2017-11234\",\n \"CVE-2017-11235\",\n \"CVE-2017-11236\",\n \"CVE-2017-11237\",\n \"CVE-2017-11238\",\n \"CVE-2017-11239\",\n \"CVE-2017-11241\",\n \"CVE-2017-11242\",\n \"CVE-2017-11243\",\n \"CVE-2017-11244\",\n \"CVE-2017-11245\",\n \"CVE-2017-11246\",\n \"CVE-2017-11248\",\n \"CVE-2017-11249\",\n \"CVE-2017-11251\",\n \"CVE-2017-11252\",\n \"CVE-2017-11254\",\n \"CVE-2017-11255\",\n \"CVE-2017-11256\",\n \"CVE-2017-11257\",\n \"CVE-2017-11258\",\n \"CVE-2017-11259\",\n \"CVE-2017-11260\",\n \"CVE-2017-11261\",\n \"CVE-2017-11262\",\n \"CVE-2017-11263\",\n \"CVE-2017-11265\",\n \"CVE-2017-11267\",\n \"CVE-2017-11268\",\n \"CVE-2017-11269\",\n \"CVE-2017-11270\",\n \"CVE-2017-11271\"\n );\n script_bugtraq_id(\n 100179,\n 100180,\n 100181,\n 100182,\n 100184,\n 100185,\n 100186,\n 100187,\n 100189\n );\n\n script_name(english:\"Adobe Acrobat < 11.0.21 / 2015.006.30355 / 2017.011.30066 / 2017.012.20098 Multiple Vulnerabilities (APSB17-24)\");\n script_summary(english:\"Checks the version of Adobe Acrobat.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The version of Adobe Acrobat installed on the remote Windows host is\naffected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Adobe Acrobat installed on the remote Windows host is a\nversion prior to 11.0.21, 2015.006.30355, 2017.011.30066,\nor 2017.012.20098. It is, therefore, affected by multiple\nvulnerabilities.\n\nNote that Nessus has not tested for these issues but has instead\nrelied only on the application's self-reported version number.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/acrobat/apsb17-11.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Acrobat 11.0.21 / 2015.006.30355 / 2017.011.30066\n/ 2017.012.20098 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:H/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:H/RL:O/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2017-3124\");\n\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n script_set_attribute(attribute:\"exploited_by_malware\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/11\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:acrobat\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"adobe_acrobat_installed.nasl\");\n script_require_keys(\"SMB/Registry/Enumerated\", \"installed_sw/Adobe Acrobat\");\n\n exit(0);\n}\n\ninclude(\"vcf.inc\");\ninclude(\"vcf_extras.inc\");\n\nget_kb_item_or_exit(\"SMB/Registry/Enumerated\");\n\napp_info = vcf::get_app_info(app:\"Adobe Acrobat\", win_local:TRUE);\nconstraints = [\n { \"min_version\" : \"11.0\", \"fixed_version\" : \"11.0.21\" },\n { \"min_version\" : \"15.6\", \"max_version\" : \"15.6.30306\", \"fixed_version\" : \"15.6.30355\" },\n { \"min_version\" : \"17.8\", \"max_version\" : \"17.8.30051\", \"fixed_version\" : \"17.11.30066\" },\n { \"min_version\" : \"15.7\", \"max_version\" : \"17.9.20058\", \"fixed_version\" : \"17.12.20098\" }\n];\n# using adobe_reader namespace check_version_and_report to properly detect Continuous vs Classic, \n# and limit ver segments to 3 (18.x.y vs 18.x.y.12345) with max_segs:3\nvcf::adobe_reader::check_version_and_report(app_info:app_info, constraints:constraints, severity:SECURITY_HOLE, max_segs:3);\n", "cvss": {"score": 10.0, "vector": "AV:N/AC:L/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-01T02:20:17", "bulletinFamily": "scanner", "description": "Adobe reports :\n\n- These updates resolve security bypass vulnerability that could lead\nto information disclosure (CVE-2017-3085).\n\n- These updates resolve type confusion vulnerability that could lead\nto remote code execution (CVE-2017-3106).", "modified": "2020-08-02T00:00:00", "id": "FREEBSD_PKG_7E3D3E9A7D8F11E7A02BD43D7EF03AA6.NASL", "href": "https://www.tenable.com/plugins/nessus/102331", "published": "2017-08-10T00:00:00", "title": "FreeBSD : Flash Player -- multiple vulnerabilities (7e3d3e9a-7d8f-11e7-a02b-d43d7ef03aa6)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102331);\n script_version(\"3.5\");\n script_cvs_date(\"Date: 2019/04/10 16:10:17\");\n\n script_cve_id(\"CVE-2017-3085\", \"CVE-2017-3106\");\n\n script_name(english:\"FreeBSD : Flash Player -- multiple vulnerabilities (7e3d3e9a-7d8f-11e7-a02b-d43d7ef03aa6)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Adobe reports :\n\n- These updates resolve security bypass vulnerability that could lead\nto information disclosure (CVE-2017-3085).\n\n- These updates resolve type confusion vulnerability that could lead\nto remote code execution (CVE-2017-3106).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://helpx.adobe.com/security/products/flash-player/apsb17-23.html\"\n );\n # https://vuxml.freebsd.org/freebsd/7e3d3e9a-7d8f-11e7-a02b-d43d7ef03aa6.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?c319da88\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:linux-flashplayer\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"linux-flashplayer<26.0.0.151\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:pkg_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-01T03:08:10", "bulletinFamily": "scanner", "description": "The version of Adobe Flash Player installed on the remote macOS or Mac\nOS X host is equal or prior to version 26.0.0.137. It is, therefore,\naffected by multiple vulnerabilities :\n\n - An information disclosure vulnerability exists due to an\n unspecified flaw. An unauthenticated, remote attacker\n can exploit this, by convincing a user to visit a\n website containing specially crafted Flash content, to\n disclose sensitive information. (CVE-2017-3085)\n\n - A remote code execution vulnerability exists due to\n improper validation of user-supplied input. An\n unauthenticated, remote attacker can exploit this, by\n convincing a user to visit a website containing\n specially crafted Flash content, to execute arbitrary\n code. (CVE-2017-3106)", "modified": "2020-08-02T00:00:00", "id": "MACOSX_FLASH_PLAYER_APSB17-23.NASL", "href": "https://www.tenable.com/plugins/nessus/102263", "published": "2017-08-08T00:00:00", "title": "Adobe Flash Player for Mac <= 26.0.0.137 Multiple Vulnerabilities (APSB17-23)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102263);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/07/14 1:59:37\");\n\n script_cve_id(\"CVE-2017-3085\", \"CVE-2017-3106\");\n script_bugtraq_id(100191);\n\n script_name(english:\"Adobe Flash Player for Mac <= 26.0.0.137 Multiple Vulnerabilities (APSB17-23)\");\n script_summary(english:\"Checks the version of Flash Player.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote macOS or Mac OS X host has a browser plugin installed that\nis affected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The version of Adobe Flash Player installed on the remote macOS or Mac\nOS X host is equal or prior to version 26.0.0.137. It is, therefore,\naffected by multiple vulnerabilities :\n\n - An information disclosure vulnerability exists due to an\n unspecified flaw. An unauthenticated, remote attacker\n can exploit this, by convincing a user to visit a\n website containing specially crafted Flash content, to\n disclose sensitive information. (CVE-2017-3085)\n\n - A remote code execution vulnerability exists due to\n improper validation of user-supplied input. An\n unauthenticated, remote attacker can exploit this, by\n convincing a user to visit a website containing\n specially crafted Flash content, to execute arbitrary\n code. (CVE-2017-3106)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/flash-player/apsb17-23.html\");\n # http://helpx.adobe.com/flash-player/kb/archived-flash-player-versions.html\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?0cb17c10\");\n script_set_attribute(attribute:\"solution\", value:\n\"Upgrade to Adobe Flash Player version 26.0.0.151 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/08\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:adobe:flash_player\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"MacOS X Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"macosx_flash_player_installed.nasl\");\n script_require_keys(\"MacOSX/Flash_Player/Version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nversion = get_kb_item_or_exit(\"MacOSX/Flash_Player/Version\");\npath = get_kb_item_or_exit(\"MacOSX/Flash_Player/Path\");\n\ncutoff_version = \"26.0.0.137\";\nfix = \"26.0.0.151\";\n# we're checking for versions less than or equal to the cutoff!\nif (ver_compare(ver:version, fix:cutoff_version, strict:FALSE) <= 0)\n{\n if (report_verbosity > 0)\n {\n report =\n '\\n Path : ' + path +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n security_hole(port:0, extra:report);\n }\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_INST_PATH_NOT_VULN, \"Flash Player for Mac\", version, path);\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2020-08-01T04:57:09", "bulletinFamily": "scanner", "description": "The remote Windows host is missing security update KB4034662. It is,\ntherefore, affected by multiple vulnerabilities :\n\n - An information disclosure vulnerability exists due to an\n unspecified flaw. An unauthenticated, remote attacker\n can exploit this, by convincing a user to visit a\n website containing specially crafted Flash content, to\n disclose sensitive information. (CVE-2017-3085)\n\n - A remote code execution vulnerability exists due to\n improper validation of user-supplied input. An\n unauthenticated, remote attacker can exploit this, by\n convincing a user to visit a website containing\n specially crafted Flash content, to execute arbitrary\n code. (CVE-2017-3106)", "modified": "2020-08-02T00:00:00", "id": "SMB_NT_MS17_AUG_4034662.NASL", "href": "https://www.tenable.com/plugins/nessus/102266", "published": "2017-08-08T00:00:00", "title": "KB4034662: Security update for Adobe Flash Player (August 2017)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102266);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/08/03 11:35:09\");\n\n script_cve_id(\"CVE-2017-3085\", \"CVE-2017-3106\");\n script_bugtraq_id(100191);\n script_xref(name:\"MSKB\", value:\"4034662\");\n script_xref(name:\"MSFT\", value:\"MS17-4034662\");\n\n script_name(english:\"KB4034662: Security update for Adobe Flash Player (August 2017)\");\n script_summary(english:\"Checks the version of the ActiveX control.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote Windows host has a browser plugin installed that is\naffected by multiple vulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote Windows host is missing security update KB4034662. It is,\ntherefore, affected by multiple vulnerabilities :\n\n - An information disclosure vulnerability exists due to an\n unspecified flaw. An unauthenticated, remote attacker\n can exploit this, by convincing a user to visit a\n website containing specially crafted Flash content, to\n disclose sensitive information. (CVE-2017-3085)\n\n - A remote code execution vulnerability exists due to\n improper validation of user-supplied input. An\n unauthenticated, remote attacker can exploit this, by\n convincing a user to visit a website containing\n specially crafted Flash content, to execute arbitrary\n code. (CVE-2017-3106)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://helpx.adobe.com/security/products/flash-player/apsb17-23.html\");\n # https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV170010\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?a5a1122e\");\n # https://support.microsoft.com/en-us/help/4034662/security-update-for-adobe-flash-player-aug-08-2017\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?a8fb45ae\");\n script_set_attribute(attribute:\"solution\", value:\n\"Microsoft has released a set of patches for Windows 2012, 8.1, RT 8.1,\n2012 R2, 10, and 2016.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:POC/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:P/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"Exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"true\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/08\");\n\n script_set_attribute(attribute:\"plugin_type\",value:\"local\");\n script_set_attribute(attribute:\"cpe\",value:\"cpe:/a:adobe:flash_player\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Windows : Microsoft Bulletins\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"smb_hotfixes.nasl\", \"ms_bulletin_checks_possible.nasl\");\n script_require_keys(\"SMB/MS_Bulletin_Checks/Possible\");\n script_require_ports(139, 445, \"Host/patch_management_checks\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"smb_func.inc\");\ninclude(\"smb_hotfixes.inc\");\ninclude(\"smb_hotfixes_fcheck.inc\");\ninclude(\"smb_activex_func.inc\");\ninclude(\"misc_func.inc\");\n\nget_kb_item_or_exit(\"SMB/MS_Bulletin_Checks/Possible\");\n\nbulletin = \"MS17-08\";\nkbs = make_list(\"4034662\");\nif (get_kb_item(\"Host/patch_management_checks\")) hotfix_check_3rd_party(bulletin:bulletin, kbs:kbs, severity:SECURITY_HOLE);\n\nget_kb_item_or_exit(\"SMB/Registry/Enumerated\");\nget_kb_item_or_exit(\"SMB/WindowsVersion\", exit_code:1);\n\nif (hotfix_check_sp_range(win8:'0', win81:'0', win10:'0') <= 0) audit(AUDIT_OS_SP_NOT_VULN);\nif (hotfix_check_server_core() == 1) audit(AUDIT_WIN_SERVER_CORE);\n\nproductname = get_kb_item_or_exit(\"SMB/ProductName\", exit_code:1);\nif (\"Windows 8\" >< productname && \"Windows 8.1\" >!< productname) audit(AUDIT_OS_SP_NOT_VULN);\n\nif (activex_init() != ACX_OK) audit(AUDIT_FN_FAIL, \"activex_init\");\n\n# Adobe Flash Player CLSID\nclsid = '{D27CDB6E-AE6D-11cf-96B8-444553540000}';\n\nfile = activex_get_filename(clsid:clsid);\nif (isnull(file))\n{\n activex_end();\n audit(AUDIT_FN_FAIL, \"activex_get_filename\", \"NULL\");\n}\nif (!file)\n{\n activex_end();\n audit(AUDIT_ACTIVEX_NOT_FOUND, clsid);\n}\n\n# Get its version.\nversion = activex_get_fileversion(clsid:clsid);\nif (!version)\n{\n activex_end();\n audit(AUDIT_VER_FAIL, file);\n}\n\ninfo = '';\n\niver = split(version, sep:'.', keep:FALSE);\nfor (i=0; i<max_index(iver); i++)\n iver[i] = int(iver[i]);\niver = join(iver, sep:\".\");\n\n# all <= 26.0.0.137\nfix = FALSE;\nif(ver_compare(ver:iver, fix:\"26.0.0.137\", strict:FALSE) <= 0)\n fix = \"26.0.0.151\";\n\nif (\n (report_paranoia > 1 || activex_get_killbit(clsid:clsid) == 0) &&\n fix\n)\n{\n info = '\\n Path : ' + file +\n '\\n Installed version : ' + version +\n '\\n Fixed version : ' + fix +\n '\\n';\n}\n\nport = kb_smb_transport();\n\nif (info != '')\n{\n if (report_paranoia > 1)\n {\n report = info +\n '\\n' +\n 'Note, though, that Nessus did not check whether the kill bit was\\n' +\n \"set for the control's CLSID because of the Report Paranoia setting\" + '\\n' +\n 'in effect when this scan was run.\\n';\n }\n else\n {\n report = info +\n '\\n' +\n 'Moreover, its kill bit is not set so it is accessible via Internet\\n' +\n 'Explorer.\\n';\n }\n replace_kb_item(name:\"SMB/Missing/\"+bulletin, value:TRUE);\n hotfix_add_report(bulletin:'MS17-08', kb:'4034662', report);\n security_report_v4(severity:SECURITY_HOLE, port:port, extra:hotfix_get_report());\n}\nelse audit(AUDIT_HOST_NOT, 'affected');\n", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}], "cve": [{"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable heap overflow vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to polygons. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-13T17:51:00", "id": "CVE-2017-11241", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11241", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11241", "type": "cve", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-10-04T12:18:47", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) data related to curve drawing. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-10-03T00:03:00", "id": "CVE-2017-11238", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11238", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11238", "type": "cve", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing JPEG 2000 (JP2) code stream data. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-14T13:59:00", "id": "CVE-2017-11228", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11228", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11228", "type": "cve", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable heap overflow vulnerability in the JPEG parser. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-14T13:46:00", "id": "CVE-2017-11211", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11211", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11211", "type": "cve", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-10-04T12:18:47", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) private data. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-10-03T00:03:00", "id": "CVE-2017-11245", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11245", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11245", "type": "cve", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability in the XFA layout engine. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-14T13:56:00", "id": "CVE-2017-11224", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11224", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11224", "type": "cve", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the image conversion engine when processing Enhanced Metafile Format (EMF) private data. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-14T13:58:00", "id": "CVE-2017-11227", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11227", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11227", "type": "cve", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}, {"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable use after free vulnerability when processing Enhanced Metafile Format (EMF) data related to brush manipulation. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-13T17:52:00", "id": "CVE-2017-11232", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11232", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11232", "type": "cve", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N"}}, {"lastseen": "2019-06-17T12:59:14", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the internal data structure manipulation related to document encoding. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-03-14T16:00:00", "id": "CVE-2017-11263", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11263", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11263", "type": "cve", "cvss": {"score": 6.8, "vector": "AV:N/AC:M/Au:N/C:P/I:P/A:P"}}, {"lastseen": "2019-10-04T12:18:47", "bulletinFamily": "NVD", "description": "Adobe Acrobat Reader 2017.009.20058 and earlier, 2017.008.30051 and earlier, 2015.006.30306 and earlier, and 11.0.20 and earlier has an exploitable memory corruption vulnerability in the font parsing, where the font is embedded in the XML Paper Specification (XPS) file. Successful exploitation could lead to arbitrary code execution.", "modified": "2019-10-03T00:03:00", "id": "CVE-2017-11210", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-11210", "published": "2017-08-11T19:29:00", "title": "CVE-2017-11210", "type": "cve", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:P/I:N/A:N"}}], "seebug": [{"lastseen": "2017-11-19T12:14:21", "bulletinFamily": "exploit", "description": "During my research into the Java Remote Method Invocation (RMI) protocol, the most common RMI service that I came across was Adobe ColdFusion\u2019s Flex integration service which is used to support integration between Flash applications and ColdFusion components. A quick look at this service led to the discovery of two Java deserialization vulnerabilities, both leading to unauthenticated RCE in a service that runs under the local SYSTEM account by default.\r\n\r\nAdobe released a [security update](https://helpx.adobe.com/security/products/coldfusion/apsb17-30.html) on the 12th September 2017 for ColdFusion 11 and ColdFusion 2016 which can be installed through the ColdFusion Administrator application, however this update alone is not sufficient. Adobe ColdFusion comes bundled with its own Java runtime environment (JRE), which must be manually updated for the update to be effective.\r\n\r\nThe end-of-life ColdFusion 9 is also known to be affected, however no supported fix was available at the time of writing.\r\n\r\nUpdate (13/10/2017): To clarify, this vulnerability affects the Java RMI service and does not affect HTTP(S) services exposed by ColdFusion.\r\n\r\n\r\n### The Vulnerability: RMI and java.lang.Object\r\nThe first thing I did when I started researching RMI was to write some code to enumerate RMI endpoints (which eventually became [BaRMIe](https://github.com/NickstaDB/BaRMIe)). The goal was to identify software that used RMI which I could investigate further.\r\n\r\n\r\n\r\nI used Shodan to find targets for enumeration, then enumerated those targets using BaRMIe. The following class was the most commonly exposed:\r\n\r\n```\r\ncoldfusion.flex.rmi.DataServicesCFProxy\r\n```\r\n\r\nThe problem with RMI services is that we can\u2019t interact with them without access to the relevant Java interface or stub class, so I downloaded a trial version of Adobe ColdFusion 2016 and installed it in a virtual machine. With ColdFusion installed I did a recursive grep over the installation directory for the above class name \u201cDataServicesCFProxy\u201d which guided me to the file \u201clib/cfusion.jar\u201d. I opened this file up in JD-GUI to find the class (interface) listed above.\r\n\r\n```\r\npackage coldfusion.flex.rmi;\r\n\r\nimport java.rmi.Remote;\r\nimport java.rmi.RemoteException;\r\nimport java.util.List;\r\nimport java.util.Map;\r\n\r\npublic abstract interface DataServicesCFProxy extends Remote\r\n{\r\n public abstract List fill(String paramString, Object[] paramArrayOfObject, Map paramMap) throws RemoteException;\r\n public abstract List sync(String paramString, List paramList, Map paramMap) throws RemoteException;\r\n public abstract Object get(String paramString, Map paramMap1, Map paramMap2) throws RemoteException;\r\n public abstract Integer count(String paramString, Object[] paramArrayOfObject, Map paramMap) throws RemoteException;\r\n public abstract boolean fillContains(String paramString, Object[] paramArrayOfObject, Object paramObject, Boolean paramBoolean, Map paramMap) throws RemoteException;\r\n}\r\n```\r\n\r\nEach of the five methods of this interface accept arbitrary Java objects as parameters either directly or indirectly (List and Map can both contain arbitrary Java objects). The RMI protocol uses Java serialization for method parameters so each of these five methods can be used as an entry point for a Java deserialization attack by passing a specially crafted object to the method.\r\n\r\n### The Payload\r\nFor a complete Java deserialization exploit we need two key components \u2013 the entry point (detailed above) and a payload. The payload consists of one or more classes with properties configured in such a way that some useful code is executed when the object is deserialized. For those not familiar with Java deserialization attacks, there\u2019s an awesome tool called ysoserial which generates Java deserialization payloads using classes found in common Java libraries. Unfortunately the version of ColdFusion I had installed was not affected by any of the ysoserial payloads, and in fact Adobe released a [security update](https://helpx.adobe.com/uk/security/products/coldfusion/apsb16-16.html) in May 2016 which updated the bundled Apache Commons Collections library from version 3.2.1 to version 3.2.2, protecting ColdFusion against what is probably the best known Java deserialization payload.\r\n\r\nOn further investigation I came across the file \u201clibs/js.jar\u201d, which is the Mozilla Rhino JavaScript library. There is a deserialization payload for this library available in ysoserial but it didn\u2019t affect my lab environment. I also couldn\u2019t find any information indicating that a deserialization issue had been fixed in this library (whereas details of the [Apache Commons Collections vulnerability](https://commons.apache.org/proper/commons-collections/security-reports.html) were published). Using Wireshark to look at the network traffic I spotted the following:\r\n\r\n![](https://images.seebug.org/1508298227377)\r\n\r\nA \u201cjava.io.InvalidClassException\u201d stating that the local class was incompatible and listing the \u201cserialVersionUID\u201d of both the local and remote classes. Helpful! The serialVersionUID field of a class is usually generated automatically by Java and is updated whenever [certain \u201cincompatible\u201d changes](http://docs.oracle.com/javase/6/docs/platform/serialization/spec/version.html#6678) are made to the class. Depending on usage, however, it is entirely possible for these changes to be made without introducing an incompatibility.\r\n\r\nI fired up a hex editor, loaded up the Mozilla Rhino payload bytes that I had generated using ysoserial, and searched for the local serialVersionUID listed in the exception. I modified the value to match the remote serialVersionUID and fired the payload off again whilst monitoring the network traffic with Wireshark. I had to repeat this process several times to fix all of the serialVersionUID values, but eventually I got this:\r\n\r\n![](https://images.seebug.org/1508298243563)\r\n\r\n### Outdated JRE\r\nThe other of the two vulnerabilities is simply that ColdFusion comes bundled with an outdated version of Java. The bundled Java version does not attempt to validate the type of objects received in an RMI Registry.bind() request before deserializing them. It also fails to check that the bind request came from localhost prior to deserializing the object. This presents another entry point for Java deserialization attacks.", "modified": "2017-10-18T00:00:00", "published": "2017-10-18T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-96733", "id": "SSV:96733", "type": "seebug", "title": "Adobe ColdFusion Deserialization RCE (CVE-2017-11283, CVE-2017-11238)", "sourceData": "", "sourceHref": "", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}}, {"lastseen": "2017-11-19T12:01:24", "bulletinFamily": "exploit", "description": "### Summary\r\n\r\nAn exploitable case of parser confusion can lead to invalid pointer arithmetic in part of code responsible for parsing AcroForm forms in the Adobe Acrobat Reader DC 2017.009.20044. A specially crafted PDF file can abuse this unchecked pointer arithmetic to access and overwrite arbitrary memory in the process ultimately leading to arbitrary code execution. In order to trigger this vulnerability, a victim would need to open the malicious file or access a malicious web page.\r\n\r\n### Tested Versions\r\nAdobe Acrobat Reader DC 2017.009.20044\r\n\r\n### Product URLs\r\nhttps://get.adobe.com/reader/\r\n\r\n### CVSSv3 Score\r\n8.8 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H\r\n\r\n### CWE\r\nCWE-823: Use of Out-of-range Pointer Offset\r\n\r\n### Details\r\nAdobe Acrobat Reader is the most popular and most feature-rich PDF reader. It has a big user base, is usually a default PDF reader on systems and integrates into web browsers as a plugin for rendering PDFs. As such, tricking a user into visiting a malicious web page or sending a specially crafted email attachment can be enough to trigger this vulnerability.\r\nAcroForm elements of the PDF are used to define interactive forms that the user can use to input additional data. As part of AcroForm resource dictionary, various objects can be specified to be used by the form, such as fonts, encodings and so on. One of the encodings can be `PDFDocEncoding` which is used for specifically encoded strings.\r\nUsually, PDFDocEncoding object will consist of an array of `Differences` which define differences of this specific encoding from the defined or implicit base encoding. In Adobe Reader, if `PDFDocEncoding` object has it\u2019s base encoding defined as `WinAnsiEncoding` (which shouldn\u2019t ever be the case in regular files), a parser can be tricked into using a direct differences offset value as an offset to a pointer creating an out of bounds memory access condition. For example:\r\n```\r\n5 0 obj\r\n/DR \r\n /Encoding \r\n /PDFDocEncoding 6 0 R\r\n >>\r\n>>\r\n```\r\n```\r\nendobj\r\n6 0 obj\r\n/Type /Encoding\r\n/BaseEncoding /WinAnsiEncoding\r\n/Differences [ -247381695 /a\r\n ]\r\nendobj\r\n```\r\nIn the above excerpt from our PoC for this issue, object 5 is of `AcroForm` type and its resource dictionary refers to object 6 as `PDFDocEncoding` object. Object 6 in turn defines base encoding and malformed differences. The value -247381695 (or 0xf1414141 hex) will end up being used as a pointer offset in a memory write instruction. This can be simply observed in the following crash information:\r\n(1998.211c): Access violation - code c0000005 (first chance) First chance exceptions are reported before any exception handling. This exception may be expected and handled. `WARNING: Unable to verify checksum for C:\\Program Files\\Adobe\\Acrobat Reader DC\\Reader\\plug_ins\\AcroForm.api` ERROR: Symbol file could not be found. Defaulted to export symbols for C:\\Program Files\\Adobe\\Acrobat Reader DC\\Reader\\plug_ins\\AcroForm.api - eax=21100061 ebx=00000000 ecx=21105cc0 edx=0a2d4ff8 esi=00000001 edi=f1414141 eip=20a77eeb esp=0012e614 ebp=0012e654 iopl=0 nv up ei pl nz na pe nc cs=001b ss=0023 ds=0023 es=0023 fs=003b gs=0000 efl=00010206 AcroForm!DllUnregisterServer+0x316be: 20a77eeb 66890479 mov word ptr [ecx+edi*2],ax ds:0023:0392df42=????\r\n\r\nNote that at the time of the crash, ecx points to valid memory, but edi contains the specified value. A value being written (in register ax) is also under our control and is 0x0061 in this case (ASCII for a).\r\n\r\nFinally, by adding more differences entries in the Differences array, the out of bound write can be repeated arbitrary many times.\r\n\r\nBy abusing this, effectively arbitrary, write anywhere primitive, process can be manipulated into achieving arbitrary code execution.\r\n\r\n### Timeline\r\n* 2017-06-09 - Vendor Disclosure\r\n* 2017-08-08 - Public Release\r\n\r\n### CREDIT\r\n* Discovered by Aleksandar Nikolic of Cisco Talos.", "modified": "2017-09-13T00:00:00", "published": "2017-09-13T00:00:00", "href": "https://www.seebug.org/vuldb/ssvid-96452", "id": "SSV:96452", "type": "seebug", "title": "Adobe Acrobat Reader DC AcroForm PDFDocEncoding Remote Code Execution Vulnerability(CVE-2017-11263)", "sourceData": "", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "sourceHref": ""}], "freebsd": [{"lastseen": "2019-05-29T18:32:13", "bulletinFamily": "unix", "description": "\nAdobe reports:\n\n\nThese updates resolve security bypass vulnerability that\n\t could lead to information disclosure (CVE-2017-3085).\nThese updates resolve type confusion vulnerability that\n\t could lead to remote code execution (CVE-2017-3106).\n\n\n", "modified": "2017-08-08T00:00:00", "published": "2017-08-08T00:00:00", "id": "7E3D3E9A-7D8F-11E7-A02B-D43D7EF03AA6", "href": "https://vuxml.freebsd.org/freebsd/7e3d3e9a-7d8f-11e7-a02b-d43d7ef03aa6.html", "title": "Flash Player -- multiple vulnerabilities", "type": "freebsd", "cvss": {"score": 9.3, "vector": "AV:N/AC:M/Au:N/C:C/I:C/A:C"}}]}