9.3 - RHSA-2011:0301

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Summary
Title	acroread security update

Informations
Name	RHSA-2011:0301	First vendor Publication	2011-02-23
Vendor	RedHat	Last vendor Modification	2011-02-23
Severity (Vendor)	Critical	Revision	01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Cvss Base Score	9.3	Attack Range	Network
Cvss Impact Score	10	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Updated acroread packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 Extras and Red Hat Enterprise Linux 5 and 6 Supplementary.

The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

2. Relevant releases/architectures:

Red Hat Desktop version 4 Extras - i386, x86_64 Red Hat Enterprise Linux AS version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Desktop Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux ES version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 5) - i386, x86_64 Red Hat Enterprise Linux Server Supplementary (v. 6) - i386, x86_64 Red Hat Enterprise Linux WS version 4 Extras - i386, x86_64 Red Hat Enterprise Linux Workstation Supplementary (v. 6) - i386, x86_64

3. Description:

Adobe Reader allows users to view and print documents in Portable Document Format (PDF).

This update fixes multiple vulnerabilities in Adobe Reader. These vulnerabilities are detailed on the Adobe security page APSB11-03, listed in the References section.

A specially-crafted PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader when opened. (CVE-2011-0562, CVE-2011-0563, CVE-2011-0565, CVE-2011-0566, CVE-2011-0567, CVE-2011-0585, CVE-2011-0586, CVE-2011-0589, CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0594, CVE-2011-0595, CVE-2011-0596, CVE-2011-0598, CVE-2011-0599, CVE-2011-0600, CVE-2011-0602, CVE-2011-0603, CVE-2011-0606)

Multiple security flaws were found in Adobe reader. A specially-crafted PDF file could cause cross-site scripting (XSS) attacks against the user running Adobe Reader when opened. (CVE-2011-0587, CVE-2011-0604)

All Adobe Reader users should install these updated packages. They contain Adobe Reader version 9.4.2, which is not vulnerable to these issues. All running instances of Adobe Reader must be restarted for the update to take effect.

4. Solution:

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at https://access.redhat.com/kb/docs/DOC-11259

5. Bugs fixed (http://bugzilla.redhat.com/):

676157 - CVE-2011-0562 CVE-2011-0563 CVE-2011-0565 CVE-2011-0566 CVE-2011-0567 CVE-2011-0585 CVE-2011-0586 CVE-2011-0589 CVE-2011-0590 CVE-2011-0591 CVE-2011-0592 CVE-2011-0593 CVE-2011-0594 CVE-2011-0595 acroread: critical APSB11-03 676158 - CVE-2011-0587 CVE-2011-0604 acroread: multiple XSS flaws (APSB11-03)

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2011-0301.html

CWE : Common Weakness Enumeration

%	Id	Name
55 %	CWE-20	Improper Input Validation
30 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer
10 %	CWE-79	Failure to Preserve Web Page Structure ('Cross-site Scripting') (CWE/SANS Top 25)
5 %	CWE-189	Numeric Errors (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11819

Oval ID:	oval:org.mitre.oval:def:11819
Title:	Input validation vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to "Texture bmp," a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0592	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:11921

Oval ID:	oval:org.mitre.oval:def:11921
Title:	Arbitrary code execution vulnerability Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted (1) height and (2) width values for an RLE_8 compressed bitmap, which triggers a heap-based buffer overflow, a different vulnerability than CVE-2011-0598, CVE-2011-0599, and CVE-2011-0602.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0596	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12081

Oval ID:	oval:org.mitre.oval:def:12081
Title:	Integer overflow vulnerability in ACE.dll of Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Integer overflow in ACE.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to execute arbitrary code via crafted ICC data, a different vulnerability than CVE-2011-0596, CVE-2011-0599, and CVE-2011-0602.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0598	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12193

Oval ID:	oval:org.mitre.oval:def:12193
Title:	Unspecified vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Unspecified vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0565.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0585	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12217

Oval ID:	oval:org.mitre.oval:def:12217
Title:	Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-0604.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0587	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12248

Oval ID:	oval:org.mitre.oval:def:12248
Title:	Remote code execution vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	AcroRd32.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image that triggers an incorrect pointer calculation, leading to heap memory corruption, a different vulnerability than CVE-2011-0566 and CVE-2011-0603.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0567	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12258

Oval ID:	oval:org.mitre.oval:def:12258
Title:	Input validation vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0595, and CVE-2011-0600.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0593	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12424

Oval ID:	oval:org.mitre.oval:def:12424
Title:	Arbitrary code execution vulnerability Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	The Bitmap parsing component in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted image that causes an invalid pointer calculation related to 4/8-bit RLE compression, a different vulnerability than CVE-2011-0596, CVE-2011-0598, and CVE-2011-0602.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0599	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12428

Oval ID:	oval:org.mitre.oval:def:12428
Title:	Arbitrary code execution vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	The U3D component in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file with an invalid Parent Node count that triggers an incorrect size calculation and memory corruption, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0595.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0600	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12444

Oval ID:	oval:org.mitre.oval:def:12444
Title:	Remote code execution vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a font.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0594	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12452

Oval ID:	oval:org.mitre.oval:def:12452
Title:	Remote code execution vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0589 and CVE-2011-0606.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0563	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12492

Oval ID:	oval:org.mitre.oval:def:12492
Title:	Memory corruption vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image, a different vulnerability than CVE-2011-0566 and CVE-2011-0567.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0603	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12497

Oval ID:	oval:org.mitre.oval:def:12497
Title:	Remote code execution vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2011-0563 and CVE-2011-0606.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0589	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12500

Oval ID:	oval:org.mitre.oval:def:12500
Title:	Arbitrary code execution vulnerability Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, a different vulnerability than CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, and CVE-2011-0600.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0595	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12535

Oval ID:	oval:org.mitre.oval:def:12535
Title:	Input validation vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X do not properly validate unspecified input data, which allows attackers to execute arbitrary code via unknown vectors.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0586	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12550

Oval ID:	oval:org.mitre.oval:def:12550
Title:	Stack-based buffer overflow in rt3d.dll of Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Stack-based buffer overflow in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a crafted length value, a different vulnerability than CVE-2011-0563 and CVE-2011-0589.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0606	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12555

Oval ID:	oval:org.mitre.oval:def:12555
Title:	Library-loading vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Untrusted search path vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, a different vulnerability than CVE-2011-0570 and CVE-2011-0588.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0562	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12558

Oval ID:	oval:org.mitre.oval:def:12558
Title:	Input validation vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted Universal 3D (U3D) file that triggers a buffer overflow during decompression, related to Texture and rgba, a different vulnerability than CVE-2011-0590, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0591	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12562

Oval ID:	oval:org.mitre.oval:def:12562
Title:	Arbitrary code execution vulnerability Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via crafted JP2K record types in a JPEG2000 image in a PDF file, which causes heap corruption, a different vulnerability than CVE-2011-0596, CVE-2011-0598, and CVE-2011-0599.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0602	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12592

Oval ID:	oval:org.mitre.oval:def:12592
Title:	Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Cross-site scripting (XSS) vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2011-0587.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0604	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12606

Oval ID:	oval:org.mitre.oval:def:12606
Title:	Unspecified vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Unspecified vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allows attackers to cause a denial of service or possibly execute arbitrary code via unknown vectors, a different vulnerability than CVE-2011-0585.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0565	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12621

Oval ID:	oval:org.mitre.oval:def:12621
Title:	Input validation vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a 3D file, a different vulnerability than CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595, and CVE-2011-0600.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0590	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:12630

Oval ID:	oval:org.mitre.oval:def:12630
Title:	Remote code execution vulnerability in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6
Description:	Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image, a different vulnerability than CVE-2011-0567 and CVE-2011-0603.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2011-0566	Version:	12
Platform(s):	Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP	Product(s):	Adobe Acrobat Adobe Reader
Definition Synopsis:
Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 10.x is installed AND Check if the version of Adobe Acrobat is less than 10.0.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 10.x is installed AND Check if the version of Adobe Reader is less than 10.0.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 9 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 9.4.1 OR Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 9 Series is installed AND Check if the version of Adobe Reader is less than or equal to 9.4.1 OR Acrobat/Reader and version check Check version and if ENU_GUID exists in registry key for Reader Adobe Reader 8 Series is installed AND Check if the version of Adobe Reader is less than or equal to 8.2.5 OR Check version and if ENU_GUID exists in registry key for Acrobat Adobe Acrobat 8 Series is installed AND Check if the version of Adobe Acrobat is less than or equal to 8.2.5

Definition Id: oval:org.mitre.oval:def:21726

Oval ID:	oval:org.mitre.oval:def:21726
Title:	RHSA-2011:0301: acroread security update (Critical)
Description:	Stack-based buffer overflow in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a crafted length value, a different vulnerability than CVE-2011-0563 and CVE-2011-0589.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:0301-01 CVE-2011-0562 CVE-2011-0563 CVE-2011-0565 CVE-2011-0566 CVE-2011-0567 CVE-2011-0585 CVE-2011-0586 CVE-2011-0587 CVE-2011-0589 CVE-2011-0590 CVE-2011-0591 CVE-2011-0592 CVE-2011-0593 CVE-2011-0594 CVE-2011-0595 CVE-2011-0596 CVE-2011-0598 CVE-2011-0599 CVE-2011-0600 CVE-2011-0602 CVE-2011-0603 CVE-2011-0604 CVE-2011-0606	Version:	302
Platform(s):	Red Hat Enterprise Linux 5 Red Hat Enterprise Linux 6	Product(s):	acroread
Definition Synopsis:
Operation system section The operating system installed on the system is Red Hat Enterprise Linux 5 Packages section acroread is earlier than 0:9.4.2-1.el5 AND acroread-plugin is earlier than 0:9.4.2-1.el5 AND Operation system section The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section acroread is earlier than 0:9.4.2-3.el6_0 AND acroread-plugin is earlier than 0:9.4.2-3.el6_0

Definition Id: oval:org.mitre.oval:def:22835

Oval ID:	oval:org.mitre.oval:def:22835
Title:	DEPRECATED: ELSA-2011:0301: acroread security update (Critical)
Description:	Stack-based buffer overflow in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a crafted length value, a different vulnerability than CVE-2011-0563 and CVE-2011-0589.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0301-01 CVE-2011-0562 CVE-2011-0563 CVE-2011-0565 CVE-2011-0566 CVE-2011-0567 CVE-2011-0585 CVE-2011-0586 CVE-2011-0587 CVE-2011-0589 CVE-2011-0590 CVE-2011-0591 CVE-2011-0592 CVE-2011-0593 CVE-2011-0594 CVE-2011-0595 CVE-2011-0596 CVE-2011-0598 CVE-2011-0599 CVE-2011-0600 CVE-2011-0602 CVE-2011-0603 CVE-2011-0604 CVE-2011-0606	Version:	98
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	acroread
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test acroread is earlier than 0:9.4.2-1.el5 AND acroread-plugin is earlier than 0:9.4.2-1.el5 OR rpm test Oracle Linux 6.x AND rpm test acroread is earlier than 0:9.4.2-3.el6_0 AND acroread-plugin is earlier than 0:9.4.2-3.el6_0

Definition Id: oval:org.mitre.oval:def:23512

Oval ID:	oval:org.mitre.oval:def:23512
Title:	ELSA-2011:0301: acroread security update (Critical)
Description:	Stack-based buffer overflow in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors related to a crafted length value, a different vulnerability than CVE-2011-0563 and CVE-2011-0589.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:0301-01 CVE-2011-0562 CVE-2011-0563 CVE-2011-0565 CVE-2011-0566 CVE-2011-0567 CVE-2011-0585 CVE-2011-0586 CVE-2011-0587 CVE-2011-0589 CVE-2011-0590 CVE-2011-0591 CVE-2011-0592 CVE-2011-0593 CVE-2011-0594 CVE-2011-0595 CVE-2011-0596 CVE-2011-0598 CVE-2011-0599 CVE-2011-0600 CVE-2011-0602 CVE-2011-0603 CVE-2011-0604 CVE-2011-0606	Version:	97
Platform(s):	Oracle Linux 5 Oracle Linux 6	Product(s):	acroread
Definition Synopsis:
rpm test Oracle Linux 5.x AND rpm test acroread is earlier than 0:9.4.2-1.el5 AND acroread-plugin is earlier than 0:9.4.2-1.el5 OR rpm test Oracle Linux 6.x AND rpm test acroread is earlier than 0:9.4.2-3.el6_0 AND acroread-plugin is earlier than 0:9.4.2-3.el6_0

CPE : Common Platform Enumeration

Type	Description	Count
Application	Adobe Acrobat cpe:2.3:a:adobe:acrobat:10.0:::::::* cpe:2.3:a:adobe:acrobat:9.4.1:::::::* cpe:2.3:a:adobe:acrobat:9.4:::::::* cpe:2.3:a:adobe:acrobat:9.3.4:::::::* cpe:2.3:a:adobe:acrobat:9.3.3:::::::* cpe:2.3:a:adobe:acrobat:9.3.2:::::::* cpe:2.3:a:adobe:acrobat:9.3.1:::::::* cpe:2.3:a:adobe:acrobat:9.3:::::::* cpe:2.3:a:adobe:acrobat:9.2:::::::* cpe:2.3:a:adobe:acrobat:9.1.3:::::::* cpe:2.3:a:adobe:acrobat:9.1.2:::::::* cpe:2.3:a:adobe:acrobat:9.1.1:::::::* cpe:2.3:a:adobe:acrobat:9.1:::::::* cpe:2.3:a:adobe:acrobat:9.0:::::::* cpe:2.3:a:adobe:acrobat:8.2.4:::::::* cpe:2.3:a:adobe:acrobat:8.2.3:::::::* cpe:2.3:a:adobe:acrobat:8.2.2:::::::* cpe:2.3:a:adobe:acrobat:8.2.1:::::::* cpe:2.3:a:adobe:acrobat:8.2:::::::* cpe:2.3:a:adobe:acrobat:8.1.7:::::::* cpe:2.3:a:adobe:acrobat:8.1.6:::::::* cpe:2.3:a:adobe:acrobat:8.1.5:::::::* cpe:2.3:a:adobe:acrobat:8.1.4:::::::* cpe:2.3:a:adobe:acrobat:8.1.3:::::::* cpe:2.3:a:adobe:acrobat:8.1.2:::::::* cpe:2.3:a:adobe:acrobat:8.1.1:::::::* cpe:2.3:a:adobe:acrobat:8.1:::::::* cpe:2.3:a:adobe:acrobat:8.0:::::::*	28
Application	Adobe Acrobat Reader cpe:2.3:a:adobe:acrobat_reader:10.0:::::::* cpe:2.3:a:adobe:acrobat_reader:9.4.1:::::::* cpe:2.3:a:adobe:acrobat_reader:9.4:::::::* cpe:2.3:a:adobe:acrobat_reader:9.3.4:::::::* cpe:2.3:a:adobe:acrobat_reader:9.3.3:::::::* cpe:2.3:a:adobe:acrobat_reader:9.3.2:::::::* cpe:2.3:a:adobe:acrobat_reader:9.3.1:::::::* cpe:2.3:a:adobe:acrobat_reader:9.3:::::::* cpe:2.3:a:adobe:acrobat_reader:9.2:::::::* cpe:2.3:a:adobe:acrobat_reader:9.1.3:::::::* cpe:2.3:a:adobe:acrobat_reader:9.1.2:::::::* cpe:2.3:a:adobe:acrobat_reader:9.1.1:::::::* cpe:2.3:a:adobe:acrobat_reader:9.1:::::::* cpe:2.3:a:adobe:acrobat_reader:9.0:::::::* cpe:2.3:a:adobe:acrobat_reader:8.2.4:::::::* cpe:2.3:a:adobe:acrobat_reader:8.2.3:::::::* cpe:2.3:a:adobe:acrobat_reader:8.2.2:::::::* cpe:2.3:a:adobe:acrobat_reader:8.2.1:::::::* cpe:2.3:a:adobe:acrobat_reader:8.2:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1.7:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1.6:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1.5:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1.4:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1.2:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1.1:::::::* cpe:2.3:a:adobe:acrobat_reader:8.1:::::::* cpe:2.3:a:adobe:acrobat_reader:8.0:::::::*	27

OpenVAS Exploits

Date	Description
2012-02-12	Name : Gentoo Security Advisory GLSA 201110-11 (Adobe Flash Player) File : nvt/glsa_201110_11.nasl
2012-02-12	Name : Gentoo Security Advisory GLSA 201201-19 (acroread) File : nvt/glsa_201201_19.nasl
2011-06-03	Name : SuSE Update for flash-player SUSE-SA:2011:025 File : nvt/gb_suse_2011_025.nasl
2011-03-15	Name : SuSE Update for acroread SUSE-SA:2011:011 File : nvt/gb_suse_2011_011.nasl
2011-02-15	Name : Adobe Reader and Acrobat Multiple Vulnerabilities February-2011 (Windows) File : nvt/gb_adobe_prdts_mult_vuln_feb11_win.nasl
2011-02-15	Name : Adobe Reader Multiple Vulnerabilities February-2011 (Linux) File : nvt/gb_adobe_reader_mult_vuln_feb11_lin.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
72501	Adobe Reader / Acrobat U3D Texture Parser ILBM Handling Overflow Adobe Reader and Acrobat are prone to an overflow condition. The program's implementation of an image format supported by the Universal 3D compressed file format fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted Universal 3D (U3D) file, a context-dependent attacker can potentially execute arbitrary code.
71399	Adobe Reader / Acrobat Unspecified DoS (2011-0565) Adobe Reader and Acrobat contain an unspecified flaw that may allow an attacker to cause a denial of service. It is possible, though not confirmed, that this vulnerability may also allow the execution of arbitrary code. No further details have been provided.
71398	Adobe Reader / Acrobat Unspecified Image Handling Memory Corruption Code Exec... A memory corruption flaw exists in Adobe Reader and Acrobat. The programs fail to sanitize user-supplied input when parsing certain images, resulting in memory corruption. With a specially crafted image file, a context-dependent attacker can execute arbitrary code.
71397	Adobe Reader / Acrobat AcroRd32.dll memset Memory Corruption Remote Code Exec... A memory corruption flaw exists in Adobe Reader and Acrobat. The AcroRd32.dll component fails to sanitize user-supplied input calculating a pointer while passing it to memset, resulting in memory corruption. With a specially crafted image, a context-dependent attacker can execute arbitrary code.
71395	Adobe Reader / Acrobat Unspecified DoS (2011-0585) Adobe Reader and Acrobat contain an unspecified flaw that may allow a context-dependent attacker to cause an infinite loop condition, resulting in a denial of service. No further details have been provided.
71394	Adobe Reader / Acrobat Unspecified Code Execution (2011-0586) Adobe Reader and Acrobat fail to properly validate certain unspecified input data, which may allow an attacker to execute arbitrary code. No further details have been provided.
71393	Adobe Reader / Acrobat Unspecified XSS (2011-0587) Adobe Reader and Acrobat contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the applications do not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
71391	Adobe Reader / Acrobat Unspecified Memory Corruption Code Execution (2011-0589) A memory corruption flaw exists in Adobe Reader and Acrobat. The program fails to sanitize certain unspecified user-supplied input, resulting in memory corruption. With a specially crafted PDF file, a context-dependent attacker can execute arbitrary code.
71390	Adobe Reader / Acrobat 3D U3D Texture iff RLE Decompression Overflow Adobe Reader and Acrobat are prone to an overflow condition. The program's implementation of an image format supported by the Universal 3D compressed file format fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted Universal 3D (U3D) file, a context-dependent attacker can potentially execute arbitrary code.
71389	Adobe Reader / Acrobat 3D U3D Texture rgba RLE Decompression Overflow Adobe Reader and Acrobat are prone to an overflow condition. The program's implementation of an image format supported by the Universal 3D compressed file format fails to properly sanitize user-supplied input resulting in a buffer overflow related to Texture and rgba. With a specially crafted Universal 3D (U3D) file, a context-dependent attacker can potentially execute arbitrary code.
71388	Adobe Reader / Acrobat 3D U3D Texture bmp RLE Decompression Overflow Adobe Reader and Acrobat are prone to an overflow condition. The program's implementation of an image format supported by the Universal 3D compressed file format fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted Universal 3D (U3D) file, a context-dependent attacker can potentially execute arbitrary code.
71387	Adobe Reader / Acrobat 3D U3D Texture psd RLE Decompression Overflow Adobe Reader and Acrobat are prone to an overflow condition. The program's implementation of an image format supported by the Universal 3D compressed file format fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted Universal 3D (U3D) file, a context-dependent attacker can potentially execute arbitrary code.
71386	Adobe Reader / Acrobat Font Handling Unspecified Code Execution (2011-0594) Adobe Reader and Acrobat contain an unspecified flaw related that may allow a context-dependent attacker to use a crafted font to execute arbitrary code. No further details have been provided.
71385	Adobe Reader / Acrobat U3D Texture fli RLE Decompression Overflow Adobe Reader and Acrobat are prone to an overflow condition. The program's implementation of an image format supported by the Universal 3D compressed file format fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted Universal 3D (U3D) file, a context-dependent attacker can potentially execute arbitrary code.
71384	Adobe Reader / Acrobat 2d.dll BMP RLE_8 Decompression Overflow Adobe Reader and Acrobat are prone to an overflow condition. The Bitmap parsing component of 2d.dll fails to properly sanitize user-supplied input resulting in a heap-based buffer overflow. With specially crafted height and width values for an RLE_8 compressed bitmap, a context-dependent attacker can potentially execute arbitrary code.
71383	Adobe Reader / Acrobat ACE.dll ICC Parsing Overflow Adobe Reader and Acrobat are prone to an overflow condition. The ICC parsing component of ACE.dll fails to properly sanitize user-supplied input resulting in an integer overflow. With specially crafted crafted ICC data, a context-dependent attacker can potentially execute arbitrary code.
71382	Adobe Reader / Acrobat 4/8-bit RLE Compressed BMP ColorData Parsing Overflow Adobe Reader and Acrobat contain a flaw related to the Bitmap parsing component in rt3d.dll's use of 4/8-bit RLE compression. The issue is triggered when an attacker uses a pointer to copy data into the fixed-length color data buffer. This may allow a context-dependent attacker to execute arbitrary code.
71381	Adobe Reader / Acrobat U3D Parent Node Count Handling Overflow A memory corruption flaw exists in Adobe Reader and Acrobat. The U3D component fails to sanitize user-supplied input when using the Parent Node count to calculate the size of an allocation, resulting in memory corruption. With a specially crafted 3D file, a context-dependent attacker can execute arbitrary code.
71380	Adobe Reader / Acrobat Image Handling Unspecified Memory Corruption Code Exec... A memory corruption flaw exists in Adobe Reader and Acrobat. The program fails to sanitize certain unspecified user-supplied input, resulting in memory corruption. With a specially crafted PDF file, a context-dependent attacker can execute arbitrary code.
71379	Adobe Reader / Acrobat Unspecified XSS (2011-0604) Adobe Reader and Acrobat contain a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the applications do not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.
71377	Adobe Reader / Acrobat rt3d.dll Crafted File Length Handling Overflow Adobe Reader and Acrobat are prone to an overflow condition. The 3d.dll component fails to properly sanitize user-supplied input resulting in a stack-based buffer overflow. With a specially crafted length value in a file, a context-dependent attacker can potentially execute arbitrary code.
71376	Adobe Reader / Acrobat Path Subversion Arbitrary DLL Injection Code Execution Adobe Reader and Acrobat is prone to a flaw in the way it loads dynamic-link libraries (DLL). The program uses a fixed path to look for specific files or libraries. This path includes directories that may not be trusted or under user control. By placing a custom version of the file or library in the path, the program will load it before the legitimate version. This allows an attacker to inject custom code that will be run with the privilege of the program or user executing the program. This can be done by tricking a user into opening a file from the local file system or a USB drive in some cases. This attack can be leveraged remotely in some cases by placing the malicious file or library on a network share or extracted archive downloaded from a remote source.
71375	Adobe Reader / Acrobat PDF JPEG2000 (JP2K) Image Handling Arbitrary Code Exec... A memory corruption flaw exists in Adobe Reader and Acrobat. The programs fail to sanitize user-supplied input when handling a JPEG2000 file embedded inside of a PDF file, resulting in memory corruption. With a specially crafted JP2K record type in a JPEG2000 image in a PDF file, a context-dependent attacker can execute arbitrary code.
71374	Adobe Reader / Acrobat Unspecified Memory Corruption Code Execution (2011-0563) A memory corruption flaw exists in Adobe Reader and Acrobat. The program fails to sanitize certain unspecified user-supplied input, resulting in memory corruption. With a specially crafted PDF file, a context-dependent attacker can execute arbitrary code.

Snort® IPS/IDS

Date	Description
2017-07-11	Adobe malicious IFF memory corruption attempt RuleID : 43133 - Revision : 2 - Type : FILE-OTHER
2017-07-11	Adobe malicious IFF memory corruption attempt RuleID : 43132 - Revision : 2 - Type : FILE-OTHER
2017-07-11	Adobe malicious IFF memory corruption attempt RuleID : 43131 - Revision : 2 - Type : FILE-OTHER
2017-07-11	Adobe malicious IFF memory corruption attempt RuleID : 43130 - Revision : 2 - Type : FILE-OTHER
2014-04-24	Adobe Acrobat Reader field flags exploit attempt RuleID : 30236 - Revision : 3 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader universal 3D stream memory corruption attempt RuleID : 28790 - Revision : 9 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader universal 3D format memory corruption attempt RuleID : 28748 - Revision : 8 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader universal 3D format memory corruption attempt RuleID : 28747 - Revision : 8 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Universal 3D stream memory corruption attempt RuleID : 28709 - Revision : 8 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Universal 3D stream memory corruption attempt RuleID : 28633 - Revision : 8 - Type : FILE-PDF
2014-01-10	Adobe Acrobat universal 3D format memory corruption attempt RuleID : 28628 - Revision : 6 - Type : FILE-PDF
2014-01-10	Adobe Acrobat universal 3D format memory corruption attempt RuleID : 28627 - Revision : 6 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader U3D rgba parsing overflow attempt RuleID : 28625 - Revision : 7 - Type : FILE-PDF
2014-01-10	Adobe Acrobat universal 3D format memory corruption attempt RuleID : 28427 - Revision : 8 - Type : FILE-PDF
2014-01-10	Adobe Acrobat universal 3D format memory corruption attempt RuleID : 28426 - Revision : 6 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader CCITT stream compression filter invalid image size heap ... RuleID : 18507 - Revision : 20 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader CCITT stream compression filter invalid image size heap ... RuleID : 18506 - Revision : 20 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader U3D rgba parsing overflow attempt RuleID : 18457 - Revision : 19 - Type : FILE-PDF
2014-01-10	Adobe Acrobat XML entity escape attempt RuleID : 18456 - Revision : 10 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader malformed jpeg2000 superbox attempt RuleID : 18455 - Revision : 15 - Type : FILE-PDF
2014-01-10	Adobe Acrobat universal 3D format memory corruption attempt RuleID : 18454 - Revision : 18 - Type : FILE-PDF
2014-01-10	Adobe Acrobat universal 3D format memory corruption attempt RuleID : 18453 - Revision : 22 - Type : FILE-PDF
2014-01-10	Adobe malicious IFF memory corruption attempt RuleID : 18452 - Revision : 13 - Type : FILE-OTHER
2014-01-10	Adobe Acrobat ICC color integer overflow attempt RuleID : 18451 - Revision : 20 - Type : FILE-PDF
2014-01-10	Adobe Acrobat Reader malformed BMP RGBQUAD attempt RuleID : 18450 - Revision : 18 - Type : FILE-PDF
2014-01-10	Adobe Acrobat font definition memory corruption attempt RuleID : 18449 - Revision : 8 - Type : FILE-OTHER
2014-01-10	Adobe Acrobat Universal 3D stream memory corruption attempt RuleID : 18448 - Revision : 21 - Type : FILE-PDF
2014-01-10	Adobe OpenAction crafted URI action thru Firefox attempt RuleID : 18447 - Revision : 11 - Type : FILE-FLASH
2015-05-28	Firefox Acrobat Reader cooltype.dll dll-load exploit attempt RuleID : 18430 - Revision : 6 - Type : WEB-CLIENT
2015-05-28	Firefox Acrobat Reader bibutils.dll dll-load exploit attempt RuleID : 18429 - Revision : 6 - Type : WEB-CLIENT
2015-05-28	Firefox Acrobat Reader agm.dll dll-load exploit attempt RuleID : 18428 - Revision : 6 - Type : WEB-CLIENT
2015-05-28	Firefox Acrobat Reader ace.dll dll-load exploit attempt RuleID : 18427 - Revision : 6 - Type : WEB-CLIENT
2015-05-28	Firefox Acrobat Reader cooltype.dll dll-load exploit attempt RuleID : 18425 - Revision : 5 - Type : NETBIOS
2015-05-28	Firefox Acrobat Reader bibutils.dll dll-load exploit attempt RuleID : 18424 - Revision : 5 - Type : NETBIOS
2015-05-28	Firefox Acrobat Reader agm.dll dll-load exploit attempt RuleID : 18423 - Revision : 5 - Type : NETBIOS
2015-05-28	Firefox Acrobat Reader ace.dll dll-load exploit attempt RuleID : 18422 - Revision : 5 - Type : NETBIOS
2014-01-10	Adobe Acrobat Reader field flags exploit attempt RuleID : 18419 - Revision : 14 - Type : FILE-PDF

Nessus® Vulnerability Scanner

Date	Description
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_acroread-110302.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_flash-player-110513.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_flash-player-110513.nasl - Type : ACT_GATHER_INFO
2012-01-31	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201201-19.nasl - Type : ACT_GATHER_INFO
2011-10-14	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201110-11.nasl - Type : ACT_GATHER_INFO
2011-05-16	Name : The remote SuSE 11 host is missing a security update. File : suse_11_flash-player-110513.nasl - Type : ACT_GATHER_INFO
2011-05-05	Name : The remote openSUSE host is missing a security update. File : suse_11_2_acroread-110302.nasl - Type : ACT_GATHER_INFO
2011-03-07	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_acroread-110301.nasl - Type : ACT_GATHER_INFO
2011-03-07	Name : The remote SuSE 11 host is missing a security update. File : suse_11_acroread_ja-110301.nasl - Type : ACT_GATHER_INFO
2011-03-07	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread-7358.nasl - Type : ACT_GATHER_INFO
2011-03-07	Name : The remote SuSE 10 host is missing a security-related patch. File : suse_acroread_ja-7359.nasl - Type : ACT_GATHER_INFO
2011-02-24	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-0301.nasl - Type : ACT_GATHER_INFO
2011-02-09	Name : The version of Adobe Acrobat on the remote Windows host is affected by multip... File : adobe_acrobat_apsb11-03.nasl - Type : ACT_GATHER_INFO
2011-02-09	Name : The version of Adobe Reader on the remote Windows host is affected by multipl... File : adobe_reader_apsb11-03.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2014-02-17 11:54:24	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	20
Oval ID(s)	26
CPE ID(s)	55
osvdb(s)	24
Openvas Exploit(s)	6
Snort® Rule(s)	37
Nessus® Exploit(s)	14

	Related
9.3	CVE-2011-0606
9.3	CVE-2011-0603
9.3	CVE-2011-0602
9.3	CVE-2011-0600
9.3	CVE-2011-0599
9.3	CVE-2011-0598
9.3	CVE-2011-0596
9.3	CVE-2011-0595
9.3	CVE-2011-0594
9.3	CVE-2011-0593
9.3	CVE-2011-0592
9.3	CVE-2011-0591
9.3	CVE-2011-0590
9.3	CVE-2011-0589
9.3	CVE-2011-0586
9.3	CVE-2011-0585
9.3	CVE-2011-0567
9.3	CVE-2011-0566
9.3	CVE-2011-0565
9.3	CVE-2011-0563
6.9	CVE-2011-0562
4.3	CVE-2011-0604
4.3	CVE-2011-0587
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 23 more Alert(s)