This script is Copyright (C) 2011-2013 Tenable Network Security, Inc.
The version of Adobe Reader on the remote Mac OS X host is affected
by a memory corruption vulnerability.
The version of Adobe Reader installed on the remote Mac OS X host is
earlier or equal to 10.1.1 / 9.4.6 and is affected by a memory
corruption vulnerability related to the 'Universal 3D' (U3D) file
A remote attacker could exploit this by tricking a user into viewing
a maliciously crafted PDF file, causing application crashes and
potentially resulting in arbitrary code execution.
Note that the Adobe Reader X user-specific option to use 'Protected
Mode' prevents an exploit of this kind from executing and that Nessus
cannot test for this configuration option.
See also :
At the time of this writing there is no vendor-supplied patch. If
the installed product is Reader X, then the user-specific option to
use 'Protected Mode' should be enabled.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true
Family: MacOS X Local Security Checks
Nessus Plugin ID: 57044 ()
Bugtraq ID: 50922
CVE ID: CVE-2011-2462
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.