Test Kennung:	1.3.6.1.4.1.25623.1.0.804485
Kategorie:	General
Titel:	Adobe Reader Multiple Vulnerabilities-01 Sep14 (Windows)
Zusammenfassung:	The host is installed with Adobe Reader; and is prone to multiple vulnerabilities.
Beschreibung:	Summary: The host is installed with Adobe Reader and is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - An use-after-free error can be exploited to execute arbitrary code. - An error within the implementation of the 'replace()' JavaScript function can be exploited to cause a heap-based buffer overflow via specially crafted arguments. - An error within the 3DIF Plugin (3difr.x3d) can be exploited to cause a heap-based buffer overflow via a specially crafted PDF file. - Some unspecified errors can be exploited to cause a memory corruption. - An unspecified error can be exploited to bypass certain sandbox restrictions. Vulnerability Impact: Successful exploitation will allow attackers to disclose potentially sensitive information, bypass certain security restrictions, execute arbitrary code and compromise a user's system. Affected Software/OS: Adobe Reader 10.x before 10.1.12 and 11.x before 11.0.09 on Windows. Solution: Upgrade to Adobe Reader version 10.1.12 or 11.0.09 or later. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	BugTraq ID: 69823 BugTraq ID: 69821 BugTraq ID: 69826 BugTraq ID: 69824 BugTraq ID: 69825 BugTraq ID: 69827 BugTraq ID: 69828 Common Vulnerability Exposure (CVE) ID: CVE-2014-0560 http://www.securityfocus.com/bid/69823 http://www.securitytracker.com/id/1030853 XForce ISS Database: adobe-reader-cve20140560-code-exec(96001) https://exchange.xforce.ibmcloud.com/vulnerabilities/96001 Common Vulnerability Exposure (CVE) ID: CVE-2014-0561 http://www.securityfocus.com/bid/69821 XForce ISS Database: adobe-reader-cve20140561-bo(95996) https://exchange.xforce.ibmcloud.com/vulnerabilities/95996 Common Vulnerability Exposure (CVE) ID: CVE-2014-0563 http://www.securityfocus.com/bid/69826 XForce ISS Database: adobe-reader-cve20140563-code-exec(95998) https://exchange.xforce.ibmcloud.com/vulnerabilities/95998 Common Vulnerability Exposure (CVE) ID: CVE-2014-0565 http://www.securityfocus.com/bid/69824 XForce ISS Database: adobe-reader-cve20140565-code-exec(96002) https://exchange.xforce.ibmcloud.com/vulnerabilities/96002 Common Vulnerability Exposure (CVE) ID: CVE-2014-0566 http://www.securityfocus.com/bid/69825 http://www.securitytracker.com/id/1032892 XForce ISS Database: adobe-reader-cve20140566-code-exec(96003) https://exchange.xforce.ibmcloud.com/vulnerabilities/96003 Common Vulnerability Exposure (CVE) ID: CVE-2014-0567 http://www.securityfocus.com/bid/69827 XForce ISS Database: adobe-reader-cve20140567-bo(95999) https://exchange.xforce.ibmcloud.com/vulnerabilities/95999 Common Vulnerability Exposure (CVE) ID: CVE-2014-0568 http://www.securityfocus.com/bid/69828 https://code.google.com/p/google-security-research/issues/detail?id=94 XForce ISS Database: adobe-reader-cve20140568-sec-bypass(96000) https://exchange.xforce.ibmcloud.com/vulnerabilities/96000
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.