ID de Prueba:	1.3.6.1.4.1.25623.1.0.900823
Categoría:	Windows
Título:	Adobe JRun 4.0 Management Console Multiple Vulnerabilities (APSB09-12)
Resumen:	Adobe JRun is prone to multiple vulnerabilities.
Descripción:	Summary: Adobe JRun is prone to multiple vulnerabilities. Vulnerability Insight: - Multiple XSS vulnerabilities exist due to error in the Management Console which can be exploited to inject arbitrary web script or HTML via unspecified vectors. - A Directory traversal attack is possible due to error in logging/logviewer.jsp in the Management Console which can be exploited by authenticated users to read arbitrary files via a .. (dot dot) in the logfile parameter. Vulnerability Impact: Successful exploitation could allow remote attackers to cause XSS attacks or Directory Traversal attack using the affected application. Affected Software/OS: Adobe JRun version 4.0 on Windows. Solution: Apply the security updates from the referenced advisories. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1873 Bugtraq: 20090817 [DSECRG-09-052] Adobe JRun 4 Directory Traversal Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/505808/100/0/threaded https://www.exploit-db.com/exploits/9443 http://www.dsecrg.com/pages/vul/show.php?id=152 http://osvdb.org/57186 Common Vulnerability Exposure (CVE) ID: CVE-2009-1874 Bugtraq: 20090817 [DSECRG-09-051] Adobe JRun 4 Multiple XSS (Google Search) http://www.securityfocus.com/archive/1/505804/100/0/threaded http://www.dsecrg.com/pages/vul/show.php?id=151 http://osvdb.org/57187
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.