R-Viewer < 1.6.3768 Multiple Vulnerabilities
High Nessus Plugin ID 26062
SynopsisThe remote Windows host has a program that is affected by multiple issues.
DescriptionR-Viewer, a secure document viewer from remotedocs.com, is installed on the remote host.
According to the registry, the installation of R-Viewer on the remote Windows host allows arbitrary code to be executed without a user's knowledge and stores unencrypted copies of previously-opened documents in temporary directories. If an attacker can trick a user into opening a specially crafted RDZ file, he can leverage these issues to view files or execute code on the affected system subject to the user's privileges.
SolutionUpgrade to R-Viewer version 1.6.3768 or later.