English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.60445
Kategorie:SuSE Local Security Checks
Titel:SuSE Security Advisory SUSE-SA:2008:009 (acroread)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is missing updates announced in
advisory SUSE-SA:2008:009.

This version update to 8.1.2 fixes numerous bugs, including some
security problems.

While Adobe did not publish any details about those problems yet,
third parties have listed some.

The official Adobe page is:
http://www.adobe.com/support/security/advisories/apsa08-01.html

CVE-2008-0655: Multiple unspecified vulnerabilities in Adobe Reader
and Acrobat before 8.1.2 have unknown impact and
attack vectors.

CVE-2008-0667: The DOC.print function in the Adobe JavaScript API,
as used by Adobe Acrobat and Reader before 8.1.2, allows
remote attackers to configure silent non-interactive
printing, and trigger the printing of an arbitrary
number of copies of a document.

CVE-2008-0726: Integer overflow in Adobe Reader and Acrobat 8.1.1 and
earlier allows remote attackers to execute arbitrary
code via crafted arguments to the printSepsWithParams,
which triggers memory corruption.

Packages for SUSE Linux Enterprise Server 9 and Novell Linux Desktop
9 are not yet available, since we cannot upgrade to Acrobat Reader 8
on those machines. As soon as a fixed Acrobat Reader 7 is released,
they will receive updates.

Solution:
Update your system with the packages as indicated in
the referenced security advisory.

http://www.securityspace.com/smysecure/catid.html?in=SUSE-SA:2008:009

Risk factor : Critical

CVSS Score:
9.3

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2008-0655
BugTraq ID: 27641
http://www.securityfocus.com/bid/27641
Cert/CC Advisory: TA08-043A
http://www.us-cert.gov/cas/techalerts/TA08-043A.html
http://security.gentoo.org/glsa/glsa-200803-01.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10299
http://www.redhat.com/support/errata/RHSA-2008-0144.html
http://securitytracker.com/id?1019346
http://secunia.com/advisories/28802
http://secunia.com/advisories/28851
http://secunia.com/advisories/28983
http://secunia.com/advisories/29065
http://secunia.com/advisories/29205
http://secunia.com/advisories/30840
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239286-1
SuSE Security Announcement: SUSE-SA:2008:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2008-02/msg00007.html
http://www.vupen.com/english/advisories/2008/0425
http://www.vupen.com/english/advisories/2008/1966/references
Common Vulnerability Exposure (CVE) ID: CVE-2008-0667
Bugtraq: 20080208 Adobe Reader/Acrobat Remote PDF Print Silently Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/487760/100/0/threaded
http://kb.adobe.com/selfservice/viewContent.do?externalId=kb403079&sliceId=1
http://www.fortiguardcenter.com/advisory/FGA-2008-04.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9731
http://securityreason.com/securityalert/3625
http://www.vupen.com/english/advisories/2008/0425/references
Common Vulnerability Exposure (CVE) ID: CVE-2008-0726
Bugtraq: 20080211 ZDI-08-004: Adobe AcrobatReader Javascript for PDF Integer Overflow Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/488000/100/0/threaded
http://www.zerodayinitiative.com/advisories/ZDI-08-004.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10957
CopyrightCopyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.