This script is Copyright (C) 2017 Tenable Network Security, Inc.
An application installed on the remote Windows host is affected by
The version of Adobe Digital Editions installed on the remote Windows
host is prior to 4.5.5. It is, therefore, affected by multiple
- Multiple memory corruption issues exist due to improper
validation of user-supplied input. An unauthenticated,
remote attacker can exploit these to cause a denial of
service condition or the execution of arbitrary code.
(CVE-2017-3088, CVE-2017-3089, CVE-2017-3093,
- Multiple unspecified flaws exist related to insecure
loading of libraries. A local attacker can exploit these
to gain elevated privileges. (CVE-2017-3090,
- Multiple stack-based buffer overflow conditions exist
due to improper validation of user-supplied input. An
unauthenticated, remote attacker can exploit these to
disclose memory contents. (CVE-2017-3094, CVE-2017-3095)
See also :
Upgrade to Adobe Digital Editions version 4.5.5 or later.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 7.4
Public Exploit Available : false
Nessus Plugin ID: 100792 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now