The version of Adobe Reader installed on the remote Windows host is a version prior to 15.006.30279 or 15.023.20053. It is, therefore, affected by multiple vulnerabilities.

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable type confusion vulnerability in the XSLT engine related to localization functionality.
    Successful exploitation could lead to arbitrary code execution. (CVE-2017-2962)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable use after free vulnerability in the XFA engine, related to layout functionality. Successful     exploitation could lead to arbitrary code execution. (CVE-2017-2950)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable use after free vulnerability in the XFA engine, related to sub-form functionality.
    Successful exploitation could lead to arbitrary code execution. (CVE-2017-2951)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable use after free vulnerability in the JavaScript engine. Successful exploitation could lead     to arbitrary code execution. (CVE-2017-2955, CVE-2017-2958)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable use after free vulnerability in the JavaScript engine, related to manipulation of the     navigation pane. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2956)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable use after free vulnerability in the JavaScript engine, related to collaboration     functionality. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2957)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable use after free vulnerability in the XFA engine, related to validation functionality.
    Successful exploitation could lead to arbitrary code execution. (CVE-2017-2961)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability when processing TIFF image data. Successful exploitation could     lead to arbitrary code execution. (CVE-2017-2942)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability when parsing TIFF image files. Successful exploitation could     lead to arbitrary code execution. (CVE-2017-2945)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability when parsing the segment for storing non-graphic information.
    Successful exploitation could lead to arbitrary code execution. (CVE-2017-2946)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability in the XSLT engine. Successful exploitation could lead to     arbitrary code execution. (CVE-2017-2949)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability in the image conversion engine, related to parsing of color     profile metadata. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2959)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability in the image conversion engine related to parsing malformed     TIFF segments. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2966)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability in the XSLT engine related to template manipulation. Successful     exploitation could lead to arbitrary code execution. (CVE-2017-2970)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable heap overflow vulnerability in the JPEG decoder routine. Successful exploitation could lead     to arbitrary code execution. (CVE-2017-2971)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion module related to JPEG parsing.
    Successful exploitation could lead to arbitrary code execution. (CVE-2017-2972)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable buffer overflow / underflow vulnerability in the XFA engine. Successful exploitation could     lead to arbitrary code execution. (CVE-2017-2948)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable buffer overflow / underflow vulnerability in the image conversion module related to parsing     tags in TIFF files. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2952)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability when processing a malformed cross-reference table.
    Successful exploitation could lead to arbitrary code execution. (CVE-2017-2939)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability when processing JPEG 2000 files. Successful exploitation     could lead to arbitrary code execution. (CVE-2017-2940)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability when processing Compact Font Format data. Successful     exploitation could lead to arbitrary code execution. (CVE-2017-2941)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability when processing tags in TIFF images. Successful     exploitation could lead to arbitrary code execution. (CVE-2017-2943)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability when parsing crafted TIFF image files. Successful     exploitation could lead to arbitrary code execution. (CVE-2017-2944)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion module when processing a TIFF     image. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2953)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion module when handling malformed TIFF     images. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2954)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion engine, related to parsing of EXIF     metadata. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2960)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion engine, related to handling of the     color profile in a TIFF file. Successful exploitation could lead to arbitrary code execution.
    (CVE-2017-2963)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion engine, related to the parsing of     JPEG EXIF metadata. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2964)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the image conversion engine, related to TIFF file     parsing. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2965)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the XFA engine related to a form's structure and     organization. Successful exploitation could lead to arbitrary code execution. (CVE-2017-2967)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable memory corruption vulnerability in the rendering engine. Successful exploitation could lead     to arbitrary code execution. (CVE-2017-3010)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     a security bypass vulnerability when manipulating Form Data Format (FDF). (CVE-2017-2947)

  - Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have     an exploitable buffer overflow vulnerability in the JPEG2000 parser. Successful exploitation could lead to     information disclosure. (CVE-2017-3009)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Adobe Reader < 15.006.30279 / 15.023.20053 Multiple Vulnerabilities (APSB17-01)

critical Nessus Plugin ID 96453

Version 1.13

Version 1.12

Version 1.13 Nov 21, 2024, 2:36 PM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Plugin metadata Plugin Feed: 202411211436
Version 1.12 Oct 21, 2024, 2:55 PM CVE (set "CVE" coverage to "CVE-2017-2939,CVE-2017-2940,CVE-2017-2941,CVE-2017-2942,CVE-2017-2943,CVE-2017-2944,CVE-2017-2945,CVE-2017-2946,CVE-2017-2947,CVE-2017-2948,CVE-2017-2949,CVE-2017-2950,CVE-2017-2951,CVE-2017-2952,CVE-2017-2953,CVE-2017-2954,CVE-2017-2955,CVE-2017-2956,CVE-2017-2957,CVE-2017-2958,CVE-2017-2959,CVE-2017-2960,CVE-2017-2961,CVE-2017-2962,CVE-2017-2963,CVE-2017-2964,CVE-2017-2965,CVE-2017-2966,CVE-2017-2967,CVE-2017-2970,CVE-2017-2971,CVE-2017-2972,CVE-2017-3009,CVE-2017-3010") CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Detection (updated detection logic) Exploit attributes ("Exploited by malware" changed from "True" to none) Plugin categorization ("Agent" set to "windows") Plugin metadata Plugin Feed: 202410211455