Adobe Reader Information Disclosure & Code Execution Vulnerabilities (Linux)

Summary
This host is installed with Adobe Reader and is prone to information disclosure and remote code execution vulnerabilities.
Impact
Successful exploitation will allow attackers to conduct arbitrary code execution and gain knowledge of sensitive information. Impact Level: System/Application
Solution
Upgrade to Adobe Reader version 7.0 or later. For updates refer to http://get.adobe.com/reader
Insight
Flaws exist due to, - A boundary error in 'UnixAppOpenFilePerform' function while opening a document containing a '/Filespec' tag. - Temporary files being created with permissions based on the user's umask in the '/tmp' folder.
Affected
Adobe Reader version 5.0.9 and 5.0.10 on Linux.
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References