Detections
Analytics
SuSE 11 Security Update : acroread_ja (SAT Patch Number 1881)
critical Nessus Plugin ID 44377
Language:
Synopsis
The remote SuSE 11 host is missing a security update.Description
Specially crafted PDF files could crash acroread. Attackers could exploit that to potentially execute arbitrary code. (CVE-2009-3953 / CVE-2009-3954 / CVE-2009-3955 / CVE-2009-3956 / CVE-2009-3957 / CVE-2009-3958 / CVE-2009-3959 / CVE-2009-4324)Solution
Apply SAT patch number 1881.See Also
https://bugzilla.novell.com/show_bug.cgi?id=564742
http://support.novell.com/security/cve/CVE-2009-3953.html
http://support.novell.com/security/cve/CVE-2009-3954.html
http://support.novell.com/security/cve/CVE-2009-3955.html
http://support.novell.com/security/cve/CVE-2009-3956.html
http://support.novell.com/security/cve/CVE-2009-3957.html
http://support.novell.com/security/cve/CVE-2009-3958.html
Plugin Details
Severity: Critical
ID: 44377
File Name: suse_11_acroread_ja-100128.nasl
Version: 1.17
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 2/2/2010
Updated: 6/8/2022
Supported Sensors: Agentless Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.5
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:11:acroread_ja, cpe:/o:novell:suse_linux:11
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 1/28/2010
CISA Known Exploited Vulnerability Due Dates: 6/22/2022
Exploitable With
CANVAS (CANVAS)
Core Impact
Metasploit (Adobe Doc.media.newPlayer Use After Free Vulnerability)
Reference Information
CVE: CVE-2009-3953, CVE-2009-3954, CVE-2009-3955, CVE-2009-3956, CVE-2009-3957, CVE-2009-3958, CVE-2009-3959, CVE-2009-4324