SuSE9 Security Update : Acrobat Reader (YOU Patch Number 10316)

This script is Copyright (C) 2012 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 9 host is missing a security-related patch.

Description :

This update fixes a buffer overflow in Acrobat Reader versions 5 and
7, where an attacker could execute code by providing a handmade PDF to
the viewer.

The Acrobat Reader 5 versions of 9.1 and 9.2 were upgraded to Acrobat
Reader 7. This version upgrade can cause new dependencies to appear,
please check with the YaST Software Package Installation frontend if
there are new dependencies and install the required packages.

Since this attack could be done via E-Mail messages or webpages, this
should be considered to be remote exploitable.

This issue is tracked by the Mitre CVE ID CVE-2005-1625.

See also :

http://support.novell.com/security/cve/CVE-2005-1625.html

Solution :

Apply YOU patch number 10316.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)

Family: SuSE Local Security Checks

Nessus Plugin ID: 58225 ()

Bugtraq ID:

CVE ID: CVE-2005-1625

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now