Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.800107 |
Kategorie: | Denial of Service |
Titel: | Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Linux) |
Zusammenfassung: | This host has Adobe Reader/Acrobat installed, which is/are prone to Remote;Code Execution Vulnerabilities. |
Beschreibung: | Summary: This host has Adobe Reader/Acrobat installed, which is/are prone to Remote Code Execution Vulnerabilities. Vulnerability Insight: The flaw is due to an input validation error in a JavaScript method, which could allow attackers to execute arbitrary code by tricking a user into opening a specially crafted PDF document. Vulnerability Impact: Successful exploitation allows remote attackers to execute arbitrary code or an attacker could take complete control of an affected system or cause a denial of service condition. Affected Software/OS: Adobe Reader version 7.0.9 and prior - Linux(All) Adobe Reader versions 8.0 through 8.1.2 - Linux(All) Solution: Apply Security Update mentioned in the advisory CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C |
Querverweis: |
BugTraq ID: 29908 Common Vulnerability Exposure (CVE) ID: CVE-2008-2641 http://www.securityfocus.com/bid/29908 CERT/CC vulnerability note: VU#788019 http://www.kb.cert.org/vuls/id/788019 http://www.gentoo.org/security/en/glsa/glsa-200808-10.xml http://isc.sans.org/diary.html?storyid=4616 http://www.redhat.com/support/errata/RHSA-2008-0641.html http://www.securitytracker.com/id?1020352 http://secunia.com/advisories/30832 http://secunia.com/advisories/31136 http://secunia.com/advisories/31339 http://secunia.com/advisories/31352 http://secunia.com/advisories/31428 http://sunsolve.sun.com/search/document.do?assetkey=1-26-240106-1 SuSE Security Announcement: SUSE-SR:2008:016 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html http://www.vupen.com/english/advisories/2008/1906 http://www.vupen.com/english/advisories/2008/2289 XForce ISS Database: adobe-javascript-method-code-execution(43307) https://exchange.xforce.ibmcloud.com/vulnerabilities/43307 |
Copyright | Copyright (C) 2008 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |