Detections
Analytics
RHEL 3 / 4 / 5 : acroread (RHSA-2008:0974)
high Nessus Plugin ID 40730
Language:
Synopsis
The remote Red Hat host is missing one or more security updates.Description
Updated acroread packages that fix various security issues are now available for Red Hat Enterprise Linux 3 Extras, Red Hat Enterprise Linux 4 Extras, and Red Hat Enterprise Linux 5 Supplementary.This update has been rated as having critical security impact by the Red Hat Security Response Team.
Adobe Reader allows users to view and print documents in Portable Document Format (PDF).
Several input validation flaws were discovered in Adobe Reader. A malicious PDF file could cause Adobe Reader to crash or, potentially, execute arbitrary code as the user running Adobe Reader.
(CVE-2008-2549, CVE-2008-2992, CVE-2008-4812, CVE-2008-4813, CVE-2008-4814, CVE-2008-4817)
The Adobe Reader binary had an insecure relative RPATH (runtime library search path) set in the ELF (Executable and Linking Format) header. A local attacker able to convince another user to run Adobe Reader in an attacker-controlled directory could run arbitrary code with the privileges of the victim. (CVE-2008-4815)
All acroread users are advised to upgrade to these updated packages, that contain Adobe Reader version 8.1.3, and are not vulnerable to these issues.
Solution
Update the affected acroread and / or acroread-plugin packages.See Also
https://access.redhat.com/security/cve/cve-2008-2549
https://access.redhat.com/security/cve/cve-2008-2992
https://access.redhat.com/security/cve/cve-2008-4812
https://access.redhat.com/security/cve/cve-2008-4813
https://access.redhat.com/security/cve/cve-2008-4814
https://access.redhat.com/security/cve/cve-2008-4815
https://access.redhat.com/security/cve/cve-2008-4817
https://access.redhat.com/security/cve/cve-2009-0927
Plugin Details
Severity: High
ID: 40730
File Name: redhat-RHSA-2008-0974.nasl
Version: 1.36
Type: local
Agent: unix
Family: Red Hat Local Security Checks
Published: 8/24/2009
Updated: 3/28/2022
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Critical
Score: 9.6
CVSS v2
Risk Factor: High
Base Score: 9.3
Temporal Score: 8.1
Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2009-0927
Vulnerability Information
CPE: p-cpe:/a:redhat:enterprise_linux:acroread, cpe:/o:redhat:enterprise_linux:5, cpe:/o:redhat:enterprise_linux:4.7, cpe:/o:redhat:enterprise_linux:3, cpe:/o:redhat:enterprise_linux:4, p-cpe:/a:redhat:enterprise_linux:acroread-plugin, cpe:/o:redhat:enterprise_linux:5.2
Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 11/12/2008
Vulnerability Publication Date: 6/4/2008
CISA Known Exploited Vulnerability Due Dates: 3/24/2022, 4/15/2022
Exploitable With
CANVAS (CANVAS)
Core Impact
Metasploit (Adobe Collab.getIcon() Buffer Overflow)
Reference Information
CVE: CVE-2008-2549, CVE-2008-2992, CVE-2008-4812, CVE-2008-4813, CVE-2008-4814, CVE-2008-4815, CVE-2008-4817, CVE-2009-0927