Adobe Reader Information Disclosure & Denial Of Service Vulnerabilities (Windows) Network Vulnerability

Summary

This host is installed with Adobe Reader and is prone to information disclosure and denial of service vulnerabilities.

Impact

Successful exploitation will allow attackers to conduct denial of service attack and the disclosure of sensitive information. Impact Level: Application

Solution

Upgrade to Adobe Reader version 7.0.5 or later. For updates refer to http://get.adobe.com/reader

Insight

Flaws exist due to, - An unspecified error in the 'LoadFile' method. - An unspecified error within the processing of PDF documents containing a negative root page node 'Count' value.

Affected

Adobe Reader version 7.0 and earlier on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://secunia.com/advisories/14813
http://www.osvdb.com/15242

Updated on 2017-03-28

Severity

Classification

CVE CVE-2005-0035, CVE-2005-0492
CVSS Base Score: 5.1
AV:N/AC:H/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Apple Safari Multiple Memory Corruption Vulnerabilities-02 Aug14 (Mac OS X)
Apache Tomcat Remote Code Execution Vulnerability - Sep14
Apple Safari Address Bar Spoofing Vulnerability june-10 (Win)
Apple Safari Multiple Memory Corruption Vulnerabilities-01 Aug14 (Mac OS X)
Adobe Reader Multiple Vulnerabilities - Aug07 (Linux)

Adobe Reader Information Disclosure & Denial of Service Vulnerabilities (Windows)

Take action and discover your vulnerabilities