RHEL 5 / 6 : Adobe Reader (RHSA-2013:1402)

This script is Copyright (C) 2013-2014 Tenable Network Security, Inc.


Synopsis :

The remote Red Hat host is missing one or more security updates.

Description :

Updated acroread packages that disable the Adobe Reader web browser
plug-in are now available for Red Hat Enterprise Linux 5 and 6
Supplementary.

Adobe Reader allows users to view and print documents in Portable
Document Format (PDF). Adobe Reader 9 reached the end of its support
cycle on June 26, 2013, and will not receive any more security
updates. Future versions of Adobe Acrobat Reader will not be available
with Red Hat Enterprise Linux.

The Adobe Reader packages in the Red Hat Network (RHN) channels will
continue to be available. Red Hat will continue to provide these
packages only as a courtesy to customers. Red Hat will not provide
updates to the Adobe Reader packages.

This update disables the Adobe Reader web browser plug-in, which is
available via the acroread-plugin package, to prevent the exploitation
of security issues without user interaction when a user visits a
malicious web page.

See also :

http://www.nessus.org/u?8285abf2
http://rhn.redhat.com/errata/RHSA-2013-1402.html

Solution :

Update the affected acroread and / or acroread-plugin packages.

Risk factor :

High

Family: Red Hat Local Security Checks

Nessus Plugin ID: 71188 ()

Bugtraq ID:

CVE ID: