Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Windows --> Category: infos

Adobe PDF Plug-In < 8.0 Vulnerability Scan

Vulnerability Scan Summary
Checks version of nppdf32.dll

Detailed Explanation for this Vulnerability Test

Synopsis :

The browser test on the remote Windows host is affected by multiple

Description :

The version of Adobe PDF Plug-In installed on the remote host is
earlier than 7.0.9 / 8.0 and reportedly fails to properly sanitize
input to the 'FDF', 'XML', or 'XFDF' fields used by its 'Open
Parameters' feature. By tricking a user to access a specially-crafted
link and depending on the browser with which the test is used, a
remote attacker may be able to leverage these issues to conduct
arbitrary code execution, denial of service, cross-site script
forgery, or cross-site scripting attacks against a user on the remote

See also :

Solution :

Either disable displaying of PDF documents in web browsers or upgrade
to Adobe Reader / Acrobat 8.0 / 7.0.9 or later.

Threat Level:

High / CVSS Base Score : 7.0

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.