Summary
This host is installed with Adobe Reader and is prone to multiple unspecified vulnerabilities.
Impact
Successful exploitation will allow attacker to execute arbitrary code, cause a denial of service condition and potentially allow to take control of the affected system.
Impact Level: System/Application
Solution
Update to Adobe Reader Version 11.0.04 or 10.1.8 or later, For updates refer to http://get.adobe.com/reader
Insight
Multiple flaws are due to,
- An integer overflow error when handling U3D PCX external texture.
- Other multiple unspecified and integer overflow errors.
Affected
Adobe Reader X Version 10.x prior to 10.1.8 on Windows Adobe Reader XI Version 11.x prior to 11.0.04 on Windows
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2013-3351, CVE-2013-3352, CVE-2013-3353, CVE-2013-3354, CVE-2013-3355, CVE-2013-3356, CVE-2013-3357, CVE-2013-3358 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities
- Aastra IP Telephone Hardcoded Telnet Password Security Bypass Vulnerability
- Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Windows)
- Adobe Air and Flash Player Multiple Vulnerabilities (Mac OS X)
- Adobe AIR Multiple Vulnerabilities-01 Sep13 (Mac OS X)
- Adobe Acrobat Sandbox Bypass Vulnerability - Aug14 (Windows)