Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2022 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_11_1_ACROREAD-100708.NASL
HistoryJul 09, 2010 - 12:00 a.m.

openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)

2010-07-0900:00:00
This script is Copyright (C) 2010-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
38

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.883

Percentile

98.8%

JSON

Specially crafted PDF documents could crash acroread or lead to execution of arbitrary code (CVE-2010-1297, CVE-2010-1240, CVE-2010-1285, CVE-2010-1295, CVE-2010-2168, CVE-2010-2201, CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205, CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209, CVE-2010-2210, CVE-2010-2211, CVE-2010-2212).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update acroread-2664.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(47692);
  script_version("1.34");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/06/08");

  script_cve_id(
    "CVE-2010-1240",
    "CVE-2010-1285",
    "CVE-2010-1295",
    "CVE-2010-1297",
    "CVE-2010-2168",
    "CVE-2010-2201",
    "CVE-2010-2202",
    "CVE-2010-2203",
    "CVE-2010-2204",
    "CVE-2010-2205",
    "CVE-2010-2206",
    "CVE-2010-2207",
    "CVE-2010-2208",
    "CVE-2010-2209",
    "CVE-2010-2210",
    "CVE-2010-2211",
    "CVE-2010-2212"
  );
  script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2022/06/22");

  script_name(english:"openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"Specially crafted PDF documents could crash acroread or lead to
execution of arbitrary code (CVE-2010-1297, CVE-2010-1240,
CVE-2010-1285, CVE-2010-1295, CVE-2010-2168, CVE-2010-2201,
CVE-2010-2202, CVE-2010-2203, CVE-2010-2204, CVE-2010-2205,
CVE-2010-2206, CVE-2010-2207, CVE-2010-2208, CVE-2010-2209,
CVE-2010-2210, CVE-2010-2211, CVE-2010-2212).");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.novell.com/show_bug.cgi?id=612064");
  script_set_attribute(attribute:"see_also", value:"https://lists.opensuse.org/opensuse-updates/2010-07/msg00005.html");
  script_set_attribute(attribute:"solution", value:
"Update the affected acroread packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Adobe Flash Player "newfunction" Invalid Pointer Use');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_exploithub", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");
  script_set_attribute(attribute:"exploithub_sku", value:"EH-11-164");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/07/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/07/09");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-cmaps");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-ja");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-ko");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-zh_CN");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:acroread-fonts-zh_TW");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.1");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2010-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686)$") audit(AUDIT_ARCH_NOT, "i586 / i686", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE11.1", reference:"acroread-9.3.3-2.1.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"acroread-cmaps-9.3.3-2.1.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"acroread-fonts-ja-9.3.3-2.1.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"acroread-fonts-ko-9.3.3-2.1.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"acroread-fonts-zh_CN-9.3.3-2.1.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"acroread-fonts-zh_TW-9.3.3-2.1.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "acroread");
}

References

Related

nessus 24
openvas 17
redhat 3
suse 3
ubuntucve 16
cvelist 17
nvd 17
cve 17
prion 17
securityvulns 10
checkpoint_advisories 7
gentoo 1
packetstorm 7
zdt 3
seebug 7
exploitdb 10
exploitpack 5
zeroscience 1
attackerkb 1
saint 4
metasploit 4
zdi 1
canvas 1
cert 1
threatpost 2
cisa_kev 1
thn 1
securelist 1
nessus
nessus
SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2637 / 2641)
2010-12-02 00:00:00
openSUSE Security Update : acroread (openSUSE-SU-2010:0359-1)
2010-07-09 00:00:00
SuSE 11 / 11.1 Security Update : acroread (SAT Patch Numbers 2639 / 2640)
2010-12-02 00:00:00
openvas
openvas
SuSE Update for acroread SUSE-SA:2010:029
2010-07-12 00:00:00
SuSE Update for acroread SUSE-SA:2010:029
2010-07-12 00:00:00
Adobe Reader Multiple Vulnerabilities (Jul 2010) - Linux
2010-07-12 00:00:00
redhat
redhat
(RHSA-2010:0503) Critical: acroread security update
2010-06-30 00:00:00
(RHSA-2010:0470) Critical: flash-plugin security update
2010-06-14 00:00:00
(RHSA-2010:0464) Critical: flash-plugin security update
2010-06-11 00:00:00
suse
suse
remote code execution in acroread
2010-07-08 11:59:38
remote code execution in acroread
2010-09-01 13:59:57
remote code execution in flash-player
2010-06-11 17:44:20
ubuntucve
ubuntucve
CVE-2010-2212
2010-06-30 00:00:00
CVE-2010-2209
2010-06-30 00:00:00
CVE-2010-2207
2010-06-30 00:00:00
cvelist
cvelist
CVE-2010-2207
2010-06-30 18:00:00
CVE-2010-1295
2010-06-30 18:00:00
CVE-2010-2211
2010-06-30 18:00:00
nvd
nvd
CVE-2010-1295
2010-06-30 18:30:01
CVE-2010-2210
2010-06-30 18:30:01
CVE-2010-2211
2010-06-30 18:30:01
cve
cve
CVE-2010-2212
2010-06-30 18:30:01
CVE-2010-1295
2010-06-30 18:30:01
CVE-2010-2202
2010-06-30 18:30:01
prion
prion
Buffer overflow
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
Memory corruption
2010-06-30 18:30:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2010-07-01 00:00:00
VUPEN Security Research - Adobe Acrobat and Reader #1023 Tag Buffer Overflow Vulnerability (CVE-2010-2212)
2010-07-01 00:00:00
ZDI-10-116: Adobe Reader CLOD Progressive Mesh Continuation Resolution Remote Code Execution Vulnerability
2010-07-01 00:00:00
checkpoint_advisories
checkpoint_advisories
PDF Files Containing Embedded Adobe Flash Movies (CVE-2010-1297; CVE-2010-2168; CVE-2010-2201)
2010-06-30 00:00:00
Adobe Flash Player authplay.dll Component Code Execution (APSA10-01; CVE-2010-1297)
2010-06-07 00:00:00
Multiple PDF products Launch Action Command Code Execution (APSB10-15) - Ver2 (CVE-2010-1240)
2014-12-28 00:00:00
gentoo
gentoo
Adobe Reader: Multiple vulnerabilities
2010-09-07 00:00:00
packetstorm
packetstorm
Month Of Abysssec Undisclosed Bugs - Adobe Acrobat Reader
2010-09-24 00:00:00
Adobe Reader 9.3.2 Memory Corruption / Denial Of Service
2010-06-30 00:00:00
Adobe Flash Player newfucntion Invalid Pointer Use
2010-06-15 00:00:00
zdt
zdt
Adobe Acrobat Reader and Flash 'newfunction' Remote Code Execution
2010-09-24 00:00:00
Adobe Acrobat Reader and Flash Player (newclass) invalid pointer
2010-09-01 00:00:00
Adobe Acrobat and Reader "pushstring" Memory Corruption
2010-09-12 00:00:00
seebug
seebug
Adobe Acrobat Reader and Flash - 'newfunction' Remote Code Execution Vulnerability
2014-07-01 00:00:00
Adobe Reader 9.3.2 (CoolType.dll) Remote Memory Corruption / DoS Vulnerability
2014-07-01 00:00:00
Adobe Flash and Reader - 0day Exploit PoC (from the wild)
2014-07-01 00:00:00
exploitdb
exploitdb
Adobe Reader 9.3.2 - 'CoolType.dll' Remote Memory Corruption / Denial of Service
2010-06-29 00:00:00
Adobe Acrobat Reader and Flash - 'newfunction' Remote Code Execution
2010-09-23 00:00:00
Adobe Flash Player - 'newfunction' Invalid Pointer Use (Metasploit) (1)
2010-09-20 00:00:00
exploitpack
exploitpack
Adobe Reader 9.3.2 - CoolType.dll Remote Memory Corruption Denial of Service
2010-06-29 00:00:00
Adobe Acrobat Reader and Flash - newfunction Remote Code Execution
2010-09-23 00:00:00
Adobe Acrobat Reader and Flash Player - newclass Invalid Pointer
2010-09-01 00:00:00
zeroscience
zeroscience
Adobe Reader 9.3.2 (CoolType.dll) Remote Memory Corruption / DoS Vulnerability
2010-06-29 00:00:00
attackerkb
attackerkb
CVE-2010-1297
2010-06-08 00:00:00
saint
saint
Adobe Reader authplay.dll newfunction Memory Corruption
2010-06-17 00:00:00
Adobe Reader authplay.dll newfunction Memory Corruption
2010-06-17 00:00:00
Adobe Reader authplay.dll newfunction Memory Corruption
2010-06-17 00:00:00
metasploit
metasploit
Adobe PDF Embedded EXE Social Engineering
2010-07-02 00:10:51
Adobe Flash Player "newfunction" Invalid Pointer Use
2010-06-10 20:28:05
Adobe Flash Player "newfunction" Invalid Pointer Use
2010-06-10 19:52:43
zdi
zdi
Adobe Reader CLOD Progressive Mesh Continuation Resolution Remote Code Execution Vulnerability
2010-06-30 00:00:00
canvas
canvas
Immunity Canvas: FLASH_NEWFUNCTION
2010-06-08 18:30:00
cert
cert
Adobe Flash ActionScript AVM2 newfunction vulnerability
2010-06-07 00:00:00
threatpost
threatpost
Adobe to Release Flash Patch June 10
2010-06-08 10:56:42
Adobe Warns of Flash, PDF Zero Day Attack
2010-06-05 03:10:19
cisa_kev
cisa_kev
Adobe Flash Player Memory Corruption Vulnerability
2022-06-08 00:00:00
thn
thn
Bleeding Life 2 Exploit Pack Released
2011-10-24 04:30:00
securelist
securelist
Investigation Report for the September 2014 Equation malware detection incident in the US
2017-11-16 10:00:34

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.883

Percentile

98.8%

JSON
Related for SUSE_11_1_ACROREAD-100708.NASL
nessus24openvas17redhat3suse3ubuntucve16cvelist17nvd17cve17prion17securityvulns10checkpoint_advisories7gentoo1packetstorm7zdt3seebug7exploitdb10exploitpack5zeroscience1attackerkb1saint4metasploit4zdi1canvas1cert1threatpost2cisa_kev1thn1securelist1