High Nessus Plugin ID 33256
SynopsisThe remote Windows host contains an application that allows remote code execution.
DescriptionThe version of Adobe Reader installed on the remote Windows host contains a flaw in the function Collab.collectEmailInfo() that could allow a remote attacker to crash the application and/or to take control of the affected system.
To exploit this flaw, an attacker would need to trick a user on the affected system into opening a specially crafted PDF file.
Solution- If running 7.x, upgrade to version 7.1.0 or later.
- If running 8.x, upgrade to 8.1.2, if necessary, and then apply Adobe's Security Update 1 for 8.1.2.