Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.800107
Kategorie:Denial of Service
Titel:Adobe Reader/Acrobat JavaScript Method Handling Vulnerability (Linux)
Zusammenfassung:This host has Adobe Reader/Acrobat installed, which is/are prone to Remote;Code Execution Vulnerabilities.
Beschreibung:Summary:
This host has Adobe Reader/Acrobat installed, which is/are prone to Remote
Code Execution Vulnerabilities.

Vulnerability Insight:
The flaw is due to an input validation error in a JavaScript method, which
could allow attackers to execute arbitrary code by tricking a user into opening
a specially crafted PDF document.

Vulnerability Impact:
Successful exploitation allows remote attackers to execute arbitrary code or
an attacker could take complete control of an affected system or cause a
denial of service condition.

Affected Software/OS:
Adobe Reader version 7.0.9 and prior - Linux(All)
Adobe Reader versions 8.0 through 8.1.2 - Linux(All)

Solution:
Apply Security Update mentioned in the advisory

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: BugTraq ID: 29908
Common Vulnerability Exposure (CVE) ID: CVE-2008-2641
http://www.securityfocus.com/bid/29908
CERT/CC vulnerability note: VU#788019
http://www.kb.cert.org/vuls/id/788019
http://www.gentoo.org/security/en/glsa/glsa-200808-10.xml
http://isc.sans.org/diary.html?storyid=4616
http://www.redhat.com/support/errata/RHSA-2008-0641.html
http://www.securitytracker.com/id?1020352
http://secunia.com/advisories/30832
http://secunia.com/advisories/31136
http://secunia.com/advisories/31339
http://secunia.com/advisories/31352
http://secunia.com/advisories/31428
http://sunsolve.sun.com/search/document.do?assetkey=1-26-240106-1
SuSE Security Announcement: SUSE-SR:2008:016 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00001.html
http://www.vupen.com/english/advisories/2008/1906
http://www.vupen.com/english/advisories/2008/2289
XForce ISS Database: adobe-javascript-method-code-execution(43307)
https://exchange.xforce.ibmcloud.com/vulnerabilities/43307
CopyrightCopyright (C) 2008 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.