This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.
The version of Adobe Reader on the remote Mac OS X host is affected by
The version of Adobe Reader installed on the remote Mac OS X host is
earlier than 11.0.3 / 10.1.7 / 9.5.5. It is, therefore, potentially
affected by the following vulnerabilities :
- Unspecified memory corruption vulnerabilities exist that
could lead to code execution. (CVE-2013-2718,
CVE-2013-2719, CVE-2013-2720, CVE-2013-2721,
CVE-2013-2722, CVE-2013-2723, CVE-2013-2725,
CVE-2013-2726, CVE-2013-2731, CVE-2013-2732,
CVE-2013-2734, CVE-2013-2735, CVE-2013-2736,
CVE-2013-3337, CVE-2013-3338, CVE-2013-3339,
CVE-2013-3340, CVE-2013-3341, CVE-2013-3346)
- An integer underflow error exists that could lead to
code execution. (CVE-2013-2549)
- A use-after-free error exists that could lead to a
bypass of Adobe Reader's sandbox protection.
- An unspecified information leakage issue involving a
- An unspecified stack overflow issue exists that could
lead to code execution. (CVE-2013-2724)
- An unspecified buffer overflow error exists that could
lead to code execution. (CVE-2013-2730, CVE-2013-2733)
- An unspecified integer overflow error exists that could
lead to code execution. (CVE-2013-2727, CVE-2013-2729)
- A flaw exists in the way Reader handles domains that
have been blacklisted in the operating system.
See also :
Upgrade to Adobe Reader 11.0.3 / 10.1.7 / 9.5.5 or later.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 7.7
Public Exploit Available : true
Family: MacOS X Local Security Checks
Nessus Plugin ID: 66411 ()
Bugtraq ID: 58398585685990259903599045990559906599075990859909599105991159912599135991459915599165991759918599195992059921599235992559926599275993062149
CVE ID: CVE-2013-2549CVE-2013-2550CVE-2013-2718CVE-2013-2719CVE-2013-2720CVE-2013-2721CVE-2013-2722CVE-2013-2723CVE-2013-2724CVE-2013-2725CVE-2013-2726CVE-2013-2727CVE-2013-2729CVE-2013-2730CVE-2013-2731CVE-2013-2732CVE-2013-2733CVE-2013-2734CVE-2013-2735CVE-2013-2736CVE-2013-2737CVE-2013-3337CVE-2013-3338CVE-2013-3339CVE-2013-3340CVE-2013-3341CVE-2013-3342CVE-2013-3346
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.