Adobe Illustrator CS5 / CS5.5 Multiple Memory Corruption Vulnerabilities (APSB12-10)

critical Nessus Plugin ID 59179

Synopsis

The remote Windows host contains an application affected by multiple memory corruption vulnerabilities.

Description

The remote Windows host contains a version of Adobe Illustrator less than CS5 15.0.3 / CS5.5 15.1.1. As such, it reportedly is affected by multiple unspecified memory corruption vulnerabilities that could be exploited to execute arbitrary code.

Solution

Either upgrade to Adobe Illustrator CS6 (16.0) or apply the update for CS5 (15.0.3) or CS5.5 (15.1.1).

See Also

https://www.adobe.com/support/security/bulletins/apsb12-10.html

Plugin Details

Severity: Critical

ID: 59179

File Name: adobe_illustrator_apsb12-10.nasl

Version: 1.13

Type: local

Agent: windows

Family: Windows

Published: 5/17/2012

Updated: 12/4/2019

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2012-2042

Vulnerability Information

CPE: cpe:/a:adobe:illustrator

Required KB Items: SMB/Adobe Illustrator/Installed

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/8/2012

Vulnerability Publication Date: 5/8/2012

Reference Information

CVE: CVE-2012-0780, CVE-2012-2023, CVE-2012-2024, CVE-2012-2025, CVE-2012-2026, CVE-2012-2042

BID: 53422