Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.3, 10.x before 10.1.5, and 11.x before 11.0.1 allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2013-0606, CVE-2013-0612, CVE-2013-0615, and CVE-2013-0617.

Acrobat Reader was updated to 9.5.3 to fix various bugs and security issues.

More information can be found at http://www.adobe.com/support/security/bulletins/apsb13-02.html

The resolved security issues are CVE-2012-1530 , CVE-2013-0601 , CVE-2013-0602 , CVE-2013-0603 , CVE-2013-0604 , CVE-2013-0605 , CVE-2013-0606 , CVE-2013-0607 , CVE-2013-0608 , CVE-2013-0609 , CVE-2013-0610 , CVE-2013-0611 , CVE-2013-0612 , CVE-2013-0613 , CVE-2013-0614 , CVE-2013-0615 , CVE-2013-0616 , CVE-2013-0617 , CVE-2013-0618 , CVE-2013-0619 , CVE-2013-0620 , CVE-2013-0621 , CVE-2013-0622 , CVE-2013-0623 , CVE-2013-0624 , CVE-2013-0626 and CVE-2013-0627 .

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

- Update to 9.5.3 (bnc#797529) to fix: CVE-2012-1530,     CVE-2013-0601, CVE-2013-0602, CVE-2013-0603,     CVE-2013-0604, CVE-2013-0605, CVE-2013-0606,     CVE-2013-0607, CVE-2013-0608, CVE-2013-0609,     CVE-2013-0610, CVE-2013-0611, CVE-2013-0612,     CVE-2013-0613, CVE-2013-0614, CVE-2013-0615,     CVE-2013-0616, CVE-2013-0617, CVE-2013-0618,     CVE-2013-0619, CVE-2013-0620, CVE-2013-0621,     CVE-2013-0622, CVE-2013-0623, CVE-2013-0624,     CVE-2013-0626, CVE-2013-0627

  - move the browser plugin to a subpackage(bnc#768492,     bnc#757393).

The remote host is affected by the vulnerability described in GLSA-201308-03 (Adobe Reader: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Adobe Reader. Please       review the CVE identifiers referenced below for details.
  Impact :

    A remote attacker could entice a user to open a specially crafted PDF       file, possibly resulting in arbitrary code execution or a Denial of       Service condition. A local attacker could gain privileges via unspecified       vectors.
  Workaround :

    There is no known workaround at this time.

Acrobat Reader was updated to 9.5.3 to fix various bugs and security issues.

More information can be found at http://www.adobe.com/support/security/bulletins/apsb13-02.html

The resolved security issues are CVE-2012-1530 / CVE-2013-0601 / CVE-2013-0602 / CVE-2013-0603 / CVE-2013-0604 / CVE-2013-0605 / CVE-2013-0606 / CVE-2013-0607 / CVE-2013-0608 / CVE-2013-0609 / CVE-2013-0610 / CVE-2013-0611 / CVE-2013-0612 / CVE-2013-0613 / CVE-2013-0614 / CVE-2013-0615 / CVE-2013-0616 / CVE-2013-0617 / CVE-2013-0618 / CVE-2013-0619 / CVE-2013-0620 / CVE-2013-0621 / CVE-2013-0622 / CVE-2013-0623 / CVE-2013-0624 / CVE-2013-0626 / CVE-2013-0627.

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2013:0150 advisory.

  - acroread: multiple code execution flaws (APSB13-02) (CVE-2012-1530, CVE-2013-0601, CVE-2013-0602,     CVE-2013-0603, CVE-2013-0604, CVE-2013-0605, CVE-2013-0606, CVE-2013-0607, CVE-2013-0608, CVE-2013-0609,     CVE-2013-0610, CVE-2013-0611, CVE-2013-0612, CVE-2013-0613, CVE-2013-0614, CVE-2013-0615, CVE-2013-0616,     CVE-2013-0617, CVE-2013-0618, CVE-2013-0619, CVE-2013-0620, CVE-2013-0621, CVE-2013-0623, CVE-2013-0626,     CVE-2013-1376)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Adobe Reader installed on the remote Mac OS X host is prior to 11.0.1, 10.1.5, or 9.5.3. It is, therefore, affected by the following vulnerabilities :

  - Multiple memory corruption conditions exist that allow     an attacker to execute arbitrary code or cause a denial     of service. (CVE-2012-1530, CVE-2013-0601,     CVE-2013-0605, CVE-2013-0616, CVE-2013-0619,     CVE-2013-0620, CVE-2013-0623)

  - A use-after-free error exists that allows an attacker to     execute arbitrary code. (CVE-2013-0602)

  - Multiple heap buffer overflow conditions exist that     allow an attacker to execute arbitrary code.
    (CVE-2013-0603, CVE-2013-0604)

  - Multiple stack overflow conditions exist that allow an     attacker to execute arbitrary code. (CVE-2013-0610,     CVE-2013-0626)

  - Multiple unspecified buffer overflow conditions exist     that allow an attacker to execute arbitrary code.
    (CVE-2013-0606, CVE-2013-0612, CVE-2013-0615,     CVE-2013-0617, CVE-2013-0621, CVE-2013-1376)

  - Multiple integer overflow conditions exist that allow     an attacker to execute arbitrary code. (CVE-2013-0609,     CVE-2013-0613)

  - A privilege escalation vulnerability exists that allows     a local attacker to execute arbitrary code.
    (CVE-2013-0627)

  - Multiple logic errors exist that allow an attacker to     execute arbitrary code. (CVE-2013-0607, CVE-2013-0608,     CVE-2013-0611, CVE-2013-0614, CVE-2013-0618)

  - Multiple security bypass vulnerabilities exist that     allow an attacker to bypass access restrictions.
    (CVE-2013-0622, CVE-2013-0624)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Adobe Reader installed on the remote host is earlier than 11.0.1 / 10.1.5 / 9.5.3 and is, therefore, affected by multiple vulnerabilities :

  - Multiple, unspecified memory corruption errors exist.
    (CVE-2012-1530, CVE-2013-0601, CVE-2013-0605,     CVE-2013-0616, CVE-2013-0619, CVE-2013-0620,     CVE-2013-0623)

  - A use-after-free vulnerability exists. (CVE-2013-0602)

  - Multiple heap overflow vulnerabilities exist.     (CVE-2013-0603, CVE-2013-0604)

  - Multiple stack overflow vulnerabilities exist.
    (CVE-2013-0610, CVE-2013-0626)

  - Multiple buffer overflow vulnerabilities exist.
    (CVE-2013-0606, CVE-2013-0612, CVE-2013-0615,     CVE-2013-0617, CVE-2013-0621, CVE-2013-1376)

  - Multiple integer overflow vulnerabilities exist.
    (CVE-2013-0609, CVE-2013-0613)

  - A local privilege escalation vulnerability exists.
    (CVE-2013-0627)

  - Multiple logic error vulnerabilities exist.     (CVE-2013-0607, CVE-2013-0608, CVE-2013-0611,     CVE-2013-0614, CVE-2013-0618)

  - Multiple security bypass vulnerabilities exist.
    (CVE-2013-0622, CVE-2013-0624)

The version of Adobe Acrobat installed on the remote host is earlier than 11.0.1 / 10.1.5 / 9.5.3 and is, therefore, affected by multiple vulnerabilities :

  - Multiple, unspecified memory corruption errors exist.
    (CVE-2012-1530, CVE-2013-0601, CVE-2013-0605,     CVE-2013-0616, CVE-2013-0619, CVE-2013-0620,     CVE-2013-0623)

  - A use-after-free vulnerability exists. (CVE-2013-0602)

  - Multiple heap overflow vulnerabilities exist.     (CVE-2013-0603, CVE-2013-0604)

  - Multiple stack overflow vulnerabilities exist.
    (CVE-2013-0610, CVE-2013-0626)

  - Multiple buffer overflow vulnerabilities exist.
    (CVE-2013-0606, CVE-2013-0612, CVE-2013-0615,     CVE-2013-0617, CVE-2013-0621, CVE-2013-1376)

  - Multiple integer overflow vulnerabilities exist.
    (CVE-2013-0609, CVE-2013-0613)

  - A local privilege escalation vulnerability exists.
    (CVE-2013-0627)

  - Multiple logic error vulnerabilities exist.     (CVE-2013-0607, CVE-2013-0608, CVE-2013-0611,     CVE-2013-0614, CVE-2013-0618)

  - Multiple security bypass vulnerabilities exist.
    (CVE-2013-0622, CVE-2013-0624)

ID	Name	Product	Family	Severity
83572	SUSE SLED10 Security Update : Acrobat Reader (SUSE-SU-2013:0044-1)	Nessus	SuSE Local Security Checks	critical
74987	openSUSE Security Update : acroread (openSUSE-SU-2013:0363-1)	Nessus	SuSE Local Security Checks	critical
74984	openSUSE Security Update : acroread (openSUSE-SU-2013:0138-1)	Nessus	SuSE Local Security Checks	critical
69454	GLSA-201308-03 : Adobe Reader: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
64098	SuSE 11.2 Security Update : Acrobat Reader (SAT Patch Number 7230)	Nessus	SuSE Local Security Checks	critical
63610	SuSE 10 Security Update : Acrobat Reader (ZYPP Patch Number 8431)	Nessus	SuSE Local Security Checks	critical
63466	RHEL 5 / 6 : acroread (RHSA-2013:0150)	Nessus	Red Hat Local Security Checks	high
63455	Adobe Reader < 11.0.1 / 10.1.5 / 9.5.3 Multiple Vulnerabilities (APSB13-02) (Mac OS X)	Nessus	MacOS X Local Security Checks	critical
63454	Adobe Reader < 11.0.1 / 10.1.5 / 9.5.3 Multiple Vulnerabilities (APSB13-02)	Nessus	Windows	critical
63453	Adobe Acrobat < 11.0.1 / 10.1.5 / 9.5.3 Multiple Vulnerabilities (APSB13-02)	Nessus	Windows	critical

Detections

Analytics

CVE-2013-0621

high

Tenable Plugins

critical

critical

critical

critical

critical

critical

high

critical

critical

critical