Test Kennung:	1.3.6.1.4.1.25623.1.0.802749
Kategorie:	General
Titel:	Adobe Reader Multiple Vulnerabilities April-2012 (Mac OS X)
Zusammenfassung:	This host is installed with Adobe Reader and is prone to multiple; vulnerabilities.
Beschreibung:	Summary: This host is installed with Adobe Reader and is prone to multiple vulnerabilities. Vulnerability Insight: The flaws are due to - An unspecified error when handling JavaScript/JavaScript API can be exploited to corrupt memory. - An integer overflow error when handling True Type Font (TTF) can be exploited to corrupt memory. - The application loads executables (msiexec.exe) in an insecure manner. Vulnerability Impact: Successful exploitation will let attackers to bypass certain security restrictions, execute arbitrary code via unspecified vectors or cause a denial of service. Affected Software/OS: Adobe Reader version 9.x to 9.5 and prior and 10.x to 10.1.2 on Mac OS X Solution: Upgrade to Adobe Reader version 9.5.1 or 10.1.3 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 52950 BugTraq ID: 52952 BugTraq ID: 52951 BugTraq ID: 52949 Common Vulnerability Exposure (CVE) ID: CVE-2012-0777 http://www.securityfocus.com/bid/52950 Cert/CC Advisory: TA12-101B http://www.us-cert.gov/cas/techalerts/TA12-101B.html RedHat Security Advisories: RHSA-2012:0469 http://rhn.redhat.com/errata/RHSA-2012-0469.html http://www.securitytracker.com/id?1026908 http://secunia.com/advisories/48756 http://secunia.com/advisories/48846 SuSE Security Announcement: SUSE-SU-2012:0522 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00016.html SuSE Security Announcement: SUSE-SU-2012:0524 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00017.html SuSE Security Announcement: openSUSE-SU-2012:0512 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00013.html XForce ISS Database: adobe-reader-javascriptapi-code-exec(74735) https://exchange.xforce.ibmcloud.com/vulnerabilities/74735 Common Vulnerability Exposure (CVE) ID: CVE-2012-0776 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15270 Common Vulnerability Exposure (CVE) ID: CVE-2012-0774 http://www.securityfocus.com/bid/52951 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14860 Common Vulnerability Exposure (CVE) ID: CVE-2012-0775 http://www.securityfocus.com/bid/52949 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15477 XForce ISS Database: adobe-reader-javascript-code-exec(74733) https://exchange.xforce.ibmcloud.com/vulnerabilities/74733
Copyright	Copyright (C) 2012 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.