This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.
The version of Adobe Acrobat on the remote Windows host is affected by
The version of Adobe Acrobat installed on the remote host is earlier
than 9.1 / 8.1.4 / 7.1.1. Such versions are reportedly affected by
multiple vulnerabilities :
- An integer buffer overflow can be triggered when
processing a malformed JBIG2 image stream with the
'/JBIG2Decode' filter. (CVE-2009-0658)
a Collab object could allow for remote code execution.
- Additional vulnerabilities involving handling of JBIG2
image streams could lead to remote code execution.
(CVE-2009-0193, CVE-2009-0928, CVE-2009-1061,
If an attacker can trick a user into opening a specially crafted PDF
file, he can exploit these flaws to execute arbitrary code subject to
the user's privileges.
See also :
Upgrade to Adobe Acrobat 9.1 / 8.1.4 / 7.1.1 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : true