Adobe Reader Multiple Vulnerabilities Dec06 (Windows) Network Vulnerability

Summary

This host is installed with Adobe Reader and is prone to multiple vulnerabilities.

Impact

Successful exploitation will allow attackers to conduct denial of service, possibly execute arbitrary code and compromise a user's system. Impact Level: System/Application

Solution

Upgrade to Adobe Reader version 8.0 or later. For updates refer to http://get.adobe.com/reader

Insight

Flaws are due to errors in the 'AcroPDF ActiveX' control in AcroPDF.dll.

Affected

Adobe Reader version 7.0 through 7.0.8 on Windows.

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://osvdb.org/31057
http://osvdb.org/31058
http://secunia.com/advisories/23138
http://securitytracker.com/id?1017297
http://www.adobe.com/support/security/bulletins/apsb06-20.html
http://www.kb.cert.org/vuls/id/198908
http://xforce.iss.net/xforce/xfdb/30574

Updated on 2015-03-25

Severity

Classification

CVE CVE-2006-6027, CVE-2006-6236
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Media Server multiple vulnerabilities
Adobe Acrobat Multiple Unspecified Vulnerabilities -01 Feb13 (Windows)
Adobe Air Multiple Vulnerabilities June-2012 (Windows)
Adobe Acrobat Multiple Vulnerabilities-01 Dec14 (Windows)
Adobe Acrobat Multiple Vulnerabilities April-2012 (Windows)

Take action and discover your vulnerabilities