This host is installed with Adobe products and is prone to remote code execution vulnerability.

Successful exploitation will allow remote attackers to execute arbitrary code by tricking a user into opening a specially crafted PDF file. Impact Level: System/Application

For Adobe Flash Player, Update to Adobe Flash Player 10.1.53.64 or 9.0.277.0 or later, For updates refer to http://www.adobe.com/support/flashplayer/downloads.html For Adobe Reader Vendor has released a patch for the issue, refer below link, http://www.adobe.com/support/security/advisories/apsa10-01.html For updates refer to http://www.adobe.com/

The flaw is due to a memory corruption error in the 'authplay.dll' library and 'SWF' file when processing ActionScript Virtual Machine 2 (AVM2) 'newfunction' instructions within Flash content in a PDF document.

Adobe Reader/Acrobat version 9.x to 9.3.2 Adobe Flash Player version 9.0.x to 9.0.262 and 10.x to 10.0.45.2

• http://www.adobe.com/support/security/advisories/apsa10-01.html
• http://www.vupen.com/english/advisories/2010/1348
• http://www.vupen.com/english/advisories/2010/1349

---

Updated on 2017-03-28