This script is Copyright (C) 2011-2016 Tenable Network Security, Inc.
The version of Adobe Reader on the remote Mac OS X host is affected
by a memory corruption vulnerability.
The version of Adobe Reader installed on the remote Mac OS X host is
prior or equal to 10.1.1 or 9.4.6. It is, therefore, affected by a
memory corruption issue related to the Universal 3D (U3D) file format.
A remote attacker can exploit this, by convincing a user to view a
maliciously crafted PDF file, to cause an application crash or to
execute arbitrary code.
Note that the Adobe Reader X user-specific option to use 'Protected
Mode' prevents an exploit of this kind from being executed, but Nessus
cannot test for this configuration option.
See also :
Upgrade to Adobe Reader version 9.5 / 10.1.2 or later. If the product
is Adobe Reader X, and upgrading is not an option, then the
user-specific option 'Protected Mode' should be enabled.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true
Family: MacOS X Local Security Checks
Nessus Plugin ID: 57044 ()
Bugtraq ID: 506185061950620506215062250623506245062550626506275062850629509225109251348513495135051351
CVE ID: CVE-2011-2445CVE-2011-2450CVE-2011-2451CVE-2011-2452CVE-2011-2453CVE-2011-2454CVE-2011-2455CVE-2011-2456CVE-2011-2457CVE-2011-2458CVE-2011-2459CVE-2011-2460CVE-2011-2462CVE-2011-4369CVE-2011-4370CVE-2011-4371CVE-2011-4372CVE-2011-4373
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.