Unspecified vulnerability in the PRC component in Adobe Reader and Acrobat 9.x before 9.4.7 on Windows, Adobe Reader and Acrobat 9.x through 9.4.6 on Mac OS X, Adobe Reader and Acrobat 10.x through 10.1.1 on Windows and Mac OS X, and Adobe Reader 9.x through 9.4.6 on UNIX allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unknown vectors, as exploited in the wild in December 2011.

Acrobat Reader was updated to version 9.4.7 to fix security issues (CVE-2011-2462, CVE-2011-4369)

Acrobat Reader was updated to version 9.4.7 to fix security issues.

The remote host is affected by the vulnerability described in GLSA-201201-19 (Adobe Reader: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in Adobe Reader. Please       review the CVE identifiers referenced below for details.
  Impact :

    A remote attacker could entice a user to open a specially crafted PDF       file using Adobe Reader, possibly resulting in the remote execution of       arbitrary code, a Denial of Service, or other impact.
  Workaround :

    There is no known workaround at this time.

Acrobat Reader was updated to version 9.4.7 to fix two security issues. (CVE-2011-2462 / CVE-2011-4369)

The version of Adobe Reader installed on the remote host is earlier than 10.1.2 / 9.5, and therefore affected by multiple memory corruption vulnerabilities.  An attacker could exploit these issues by tricking a user into opening a maliciously crafted Reader file, resulting in arbitrary code execution. 

Adobe Reader 10.1.2 is the first 10.x release to include fixes for CVE-2011-2462 and CVE-2011-4369.  These were previously fixed for 9.x releases in 9.4.7 (APSB11-30).

The version of Adobe Acrobat installed on the remote host is earlier than 10.1.2 / 9.5, and therefore affected by multiple memory corruption vulnerabilities.  An attacker could exploit these issues by tricking a user into opening a maliciously crafted Acrobat file, resulting in arbitrary code execution. 

Adobe Acrobat 10.1.2 is the first 10.x release to include fixes for CVE-2011-2462 and CVE-2011-4369.  These were previously fixed for 9.x releases in 9.4.7 (APSB11-30).

The remote Redhat Enterprise Linux 5 / 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2012:0011 advisory.

    Adobe Reader allows users to view and print documents in Portable Document     Format (PDF).

    This update fixes two security flaws in Adobe Reader. These flaws are     detailed on the Adobe security page APSB11-30, listed in the References     section. A specially-crafted PDF file could cause Adobe Reader to crash or,     potentially, execute arbitrary code as the user running Adobe Reader when     opened. (CVE-2011-2462, CVE-2011-4369)

    All Adobe Reader users should install these updated packages. They contain     Adobe Reader version 9.4.7, which is not vulnerable to these issues. All     running instances of Adobe Reader must be restarted for the update to take     effect.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The version of Adobe Reader installed on the remote Mac OS X host is prior or equal to 10.1.1 or 9.4.6. It is, therefore, affected by a memory corruption issue related to the Universal 3D (U3D) file format.
A remote attacker can exploit this, by convincing a user to view a maliciously crafted PDF file, to cause an application crash or to execute arbitrary code.

Note that the Adobe Reader X user-specific option to use 'Protected Mode' prevents an exploit of this kind from being executed, but Nessus cannot test for this configuration option.

The remote Windows host contains a version of Adobe Reader earlier than 9.4.7.  Such versions are affected by multiple memory corruption vulnerabilities related to the 'Universal 3D' (U3D) file format and the 'Product Representation Compact' (PRC)  component.

A remote attacker could exploit this by tricking a user into viewing a maliciously crafted PDF file, causing application crashes and potentially resulting in arbitrary code execution.

This plugin does not check for Reader 10.x releases, which are vulnerable but were not fixed until APSB12-01. Refer to plugin 57484 for more information.

The remote Windows host contains a version of Adobe Acrobat earlier than 9.4.7.  Such versions are affected by  multiple memory corruption vulnerabilities related to the 'Universal 3D' (U3D) file format and the 'Product Representation Compact' (PRC)  component.

A remote attacker could exploit this by tricking a user into viewing a maliciously crafted PDF file, causing application crashes and potentially resulting in arbitrary code execution.

This plugin does not check for Acrobat 10.x releases, which are vulnerable but were not fixed until APSB12-01. Refer to plugin 57483 for more information.

ID	Name	Product	Family	Severity
75784	openSUSE Security Update : acroread (openSUSE-SU-2012:0087-1)	Nessus	SuSE Local Security Checks	critical
75423	openSUSE Security Update : acroread (openSUSE-SU-2012:0087-1)	Nessus	SuSE Local Security Checks	critical
74656	openSUSE Security Update : acroread (openSUSE-2012-33)	Nessus	SuSE Local Security Checks	critical
57745	GLSA-201201-19 : Adobe Reader: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
57587	SuSE 10 Security Update : Acrobat Reader (ZYPP Patch Number 7924)	Nessus	SuSE Local Security Checks	critical
57586	SuSE 11.1 Security Update : Acrobat Reader (SAT Patch Number 5649)	Nessus	SuSE Local Security Checks	critical
57484	Adobe Reader < 10.1.2 / 9.5 Multiple Vulnerabilities (APSB12-01)	Nessus	Windows	critical
57483	Adobe Acrobat < 10.1.2 / 9.5 Multiple Vulnerabilities (APSB12-01)	Nessus	Windows	critical
57482	RHEL 5 / 6 : acroread (RHSA-2012:0011)	Nessus	Red Hat Local Security Checks	critical
57044	Adobe Reader <= 10.1.1 / 9.4.6 U3D Memory Corruption (APSA11-04, APSB11-28, APSB11-30, APSB12-01) (Mac OS X)	Nessus	MacOS X Local Security Checks	critical
57043	Adobe Reader < 9.4.7 Multiple Memory Corruption Vulnerabilities (APSB11-30)	Nessus	Windows	critical
57042	Adobe Acrobat < 9.4.7 Multiple Memory Corruption Vulnerabilities (APSB11-30)	Nessus	Windows	critical

Detections

Analytics

CVE-2011-4369

high

Tenable Plugins

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical

critical