Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | |||
Test Kennung: | 1.3.6.1.4.1.25623.1.0.804370 |
Kategorie: | General |
Titel: | Adobe Reader 'Download Manager' Privilege Escalation Vulnerability (Linux) |
Zusammenfassung: | This host is installed with Adobe Reader and is prone to privilege escalation;vulnerability. |
Beschreibung: | Summary: This host is installed with Adobe Reader and is prone to privilege escalation vulnerability. Vulnerability Insight: Flaw is due to insecure permissions being set on the NOS installation directory within Corel getPlus Download Manager. Vulnerability Impact: Successful exploitation will allow attackers to gain escalated privileges on the system. Affected Software/OS: Adobe Reader 7.x before 7.1.4, 8.x before 8.1.7 and 9.x before 9.2 on Linux. Solution: Upgrade to Adobe Reader 7.1.4 or 8.1.7 or 9.2 or later. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C |
Querverweis: |
BugTraq ID: 35740 Common Vulnerability Exposure (CVE) ID: CVE-2009-2564 http://www.securityfocus.com/bid/35740 Bugtraq: 20090720 Adobe related service (getPlus_HelperSvc.exe) local elevation of privileges (Google Search) http://www.securityfocus.com/archive/1/505095/100/0/threaded Cert/CC Advisory: TA09-286B http://www.us-cert.gov/cas/techalerts/TA09-286B.html http://www.exploit-db.com/exploits/9199 http://retrogod.altervista.org/9sg_adobe_local.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5719 http://securitytracker.com/id?1023007 http://secunia.com/advisories/35930 http://secunia.com/advisories/36331 http://www.vupen.com/english/advisories/2009/1969 http://www.vupen.com/english/advisories/2009/2898 XForce ISS Database: getplus-nos-insecure-permissions(54383) https://exchange.xforce.ibmcloud.com/vulnerabilities/54383 |
Copyright | Copyright (C) 2014 Greenbone Networks GmbH |
Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |