Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200907-06 (acroread)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.64428

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200907-06 (acroread)

Resumen: The remote host is missing updates announced in;advisory GLSA 200907-06.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200907-06.

Vulnerability Insight:
Adobe Reader is vulnerable to remote code execution via crafted PDF files.

Solution:
All Adobe Reader users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-text/acroread-8.1.6'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-0198
BugTraq ID: 35274
http://www.securityfocus.com/bid/35274
BugTraq ID: 35302
http://www.securityfocus.com/bid/35302
Bugtraq: 20090610 Secunia Research: Adobe Reader JBIG2 Text Region Segment Buffer Overflow (Google Search)
http://www.securityfocus.com/archive/1/504217/100/0/threaded
Cert/CC Advisory: TA09-161A
http://www.us-cert.gov/cas/techalerts/TA09-161A.html
http://security.gentoo.org/glsa/glsa-200907-06.xml
http://secunia.com/secunia_research/2009-24/
http://www.redhat.com/support/errata/RHSA-2009-1109.html
http://securitytracker.com/id?1022361
http://secunia.com/advisories/34580
http://secunia.com/advisories/35496
http://secunia.com/advisories/35655
http://secunia.com/advisories/35685
http://secunia.com/advisories/35734
SuSE Security Announcement: SUSE-SA:2009:035 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00000.html
SuSE Security Announcement: SUSE-SR:2009:012 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
http://www.vupen.com/english/advisories/2009/1547
XForce ISS Database: reader-acrobat-jbig2-code-exec(51015)
https://exchange.xforce.ibmcloud.com/vulnerabilities/51015
Common Vulnerability Exposure (CVE) ID: CVE-2009-0509
XForce ISS Database: reader-text-bo(49239)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49239
Common Vulnerability Exposure (CVE) ID: CVE-2009-0510
Common Vulnerability Exposure (CVE) ID: CVE-2009-0511
Common Vulnerability Exposure (CVE) ID: CVE-2009-0512
BugTraq ID: 35293
http://www.securityfocus.com/bid/35293
Common Vulnerability Exposure (CVE) ID: CVE-2009-0888
Common Vulnerability Exposure (CVE) ID: CVE-2009-0889
Common Vulnerability Exposure (CVE) ID: CVE-2009-1492
BugTraq ID: 34736
http://www.securityfocus.com/bid/34736
Cert/CC Advisory: TA09-133B
http://www.us-cert.gov/cas/techalerts/TA09-133B.html
CERT/CC vulnerability note: VU#970180
http://www.kb.cert.org/vuls/id/970180
https://www.exploit-db.com/exploits/8569
http://blogs.adobe.com/psirt/2009/04/potential_adobe_reader_issue.html
http://packetstorm.linuxsecurity.com/0904-exploits/getannots.txt
http://osvdb.org/54130
http://www.redhat.com/support/errata/RHSA-2009-0478.html
http://www.securitytracker.com/id?1022139
http://secunia.com/advisories/34924
http://secunia.com/advisories/35055
http://secunia.com/advisories/35096
http://secunia.com/advisories/35152
http://secunia.com/advisories/35358
http://secunia.com/advisories/35416
http://sunsolve.sun.com/search/document.do?assetkey=1-66-259028-1
SuSE Security Announcement: SUSE-SA:2009:027 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00001.html
SuSE Security Announcement: SUSE-SR:2009:011 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html
http://www.vupen.com/english/advisories/2009/1189
http://www.vupen.com/english/advisories/2009/1317
XForce ISS Database: reader-getannots-code-execution(50145)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50145
Common Vulnerability Exposure (CVE) ID: CVE-2009-1493
BugTraq ID: 34740
http://www.securityfocus.com/bid/34740
https://www.exploit-db.com/exploits/8570
http://blogs.adobe.com/psirt/2009/04/update_on_adobe_reader_issue.html
http://packetstorm.linuxsecurity.com/0904-exploits/spell.txt
http://osvdb.org/54129
XForce ISS Database: reader-spellcustom-code-execution(50146)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50146
Common Vulnerability Exposure (CVE) ID: CVE-2009-1855
BugTraq ID: 35282
http://www.securityfocus.com/bid/35282
Bugtraq: 20090610 ZDI-09-042: Adobe Reader U3D RHAdobeMeta Stack Overflow Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/504229/100/0/threaded
http://www.zerodayinitiative.com/advisories/ZDI-09-042
Common Vulnerability Exposure (CVE) ID: CVE-2009-1856
BugTraq ID: 35294
http://www.securityfocus.com/bid/35294
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=807
XForce ISS Database: acrobat-reader-unspecified-overflow(51021)
https://exchange.xforce.ibmcloud.com/vulnerabilities/51021
Common Vulnerability Exposure (CVE) ID: CVE-2009-1857
BugTraq ID: 35296
http://www.securityfocus.com/bid/35296
Bugtraq: 20090611 FortiGuard Advisory: Adobe Reader/Acrobat TrueType Font Processing Memory Corruption Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/504239/100/0/threaded
http://www.fortiguardcenter.com/advisory/FGA-2009-25.html
Common Vulnerability Exposure (CVE) ID: CVE-2009-1858
BugTraq ID: 35298
http://www.securityfocus.com/bid/35298
XForce ISS Database: acrobat-reader-jbig2-code-execution(51016)
https://exchange.xforce.ibmcloud.com/vulnerabilities/51016
Common Vulnerability Exposure (CVE) ID: CVE-2009-1859
BugTraq ID: 35289
http://www.securityfocus.com/bid/35289
Common Vulnerability Exposure (CVE) ID: CVE-2009-1861
BugTraq ID: 35295
http://www.securityfocus.com/bid/35295
CERT/CC vulnerability note: VU#568153
http://www.kb.cert.org/vuls/id/568153
Common Vulnerability Exposure (CVE) ID: CVE-2009-2028
XForce ISS Database: acrobat-reader-multiple-unspecified(51126)
https://exchange.xforce.ibmcloud.com/vulnerabilities/51126

Copyright Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.64428
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200907-06 (acroread)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200907-06.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200907-06. Vulnerability Insight: Adobe Reader is vulnerable to remote code execution via crafted PDF files. Solution: All Adobe Reader users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-text/acroread-8.1.6' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0198 BugTraq ID: 35274 http://www.securityfocus.com/bid/35274 BugTraq ID: 35302 http://www.securityfocus.com/bid/35302 Bugtraq: 20090610 Secunia Research: Adobe Reader JBIG2 Text Region Segment Buffer Overflow (Google Search) http://www.securityfocus.com/archive/1/504217/100/0/threaded Cert/CC Advisory: TA09-161A http://www.us-cert.gov/cas/techalerts/TA09-161A.html http://security.gentoo.org/glsa/glsa-200907-06.xml http://secunia.com/secunia_research/2009-24/ http://www.redhat.com/support/errata/RHSA-2009-1109.html http://securitytracker.com/id?1022361 http://secunia.com/advisories/34580 http://secunia.com/advisories/35496 http://secunia.com/advisories/35655 http://secunia.com/advisories/35685 http://secunia.com/advisories/35734 SuSE Security Announcement: SUSE-SA:2009:035 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00000.html SuSE Security Announcement: SUSE-SR:2009:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html http://www.vupen.com/english/advisories/2009/1547 XForce ISS Database: reader-acrobat-jbig2-code-exec(51015) https://exchange.xforce.ibmcloud.com/vulnerabilities/51015 Common Vulnerability Exposure (CVE) ID: CVE-2009-0509 XForce ISS Database: reader-text-bo(49239) https://exchange.xforce.ibmcloud.com/vulnerabilities/49239 Common Vulnerability Exposure (CVE) ID: CVE-2009-0510 Common Vulnerability Exposure (CVE) ID: CVE-2009-0511 Common Vulnerability Exposure (CVE) ID: CVE-2009-0512 BugTraq ID: 35293 http://www.securityfocus.com/bid/35293 Common Vulnerability Exposure (CVE) ID: CVE-2009-0888 Common Vulnerability Exposure (CVE) ID: CVE-2009-0889 Common Vulnerability Exposure (CVE) ID: CVE-2009-1492 BugTraq ID: 34736 http://www.securityfocus.com/bid/34736 Cert/CC Advisory: TA09-133B http://www.us-cert.gov/cas/techalerts/TA09-133B.html CERT/CC vulnerability note: VU#970180 http://www.kb.cert.org/vuls/id/970180 https://www.exploit-db.com/exploits/8569 http://blogs.adobe.com/psirt/2009/04/potential_adobe_reader_issue.html http://packetstorm.linuxsecurity.com/0904-exploits/getannots.txt http://osvdb.org/54130 http://www.redhat.com/support/errata/RHSA-2009-0478.html http://www.securitytracker.com/id?1022139 http://secunia.com/advisories/34924 http://secunia.com/advisories/35055 http://secunia.com/advisories/35096 http://secunia.com/advisories/35152 http://secunia.com/advisories/35358 http://secunia.com/advisories/35416 http://sunsolve.sun.com/search/document.do?assetkey=1-66-259028-1 SuSE Security Announcement: SUSE-SA:2009:027 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-05/msg00001.html SuSE Security Announcement: SUSE-SR:2009:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html http://www.vupen.com/english/advisories/2009/1189 http://www.vupen.com/english/advisories/2009/1317 XForce ISS Database: reader-getannots-code-execution(50145) https://exchange.xforce.ibmcloud.com/vulnerabilities/50145 Common Vulnerability Exposure (CVE) ID: CVE-2009-1493 BugTraq ID: 34740 http://www.securityfocus.com/bid/34740 https://www.exploit-db.com/exploits/8570 http://blogs.adobe.com/psirt/2009/04/update_on_adobe_reader_issue.html http://packetstorm.linuxsecurity.com/0904-exploits/spell.txt http://osvdb.org/54129 XForce ISS Database: reader-spellcustom-code-execution(50146) https://exchange.xforce.ibmcloud.com/vulnerabilities/50146 Common Vulnerability Exposure (CVE) ID: CVE-2009-1855 BugTraq ID: 35282 http://www.securityfocus.com/bid/35282 Bugtraq: 20090610 ZDI-09-042: Adobe Reader U3D RHAdobeMeta Stack Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/504229/100/0/threaded http://www.zerodayinitiative.com/advisories/ZDI-09-042 Common Vulnerability Exposure (CVE) ID: CVE-2009-1856 BugTraq ID: 35294 http://www.securityfocus.com/bid/35294 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=807 XForce ISS Database: acrobat-reader-unspecified-overflow(51021) https://exchange.xforce.ibmcloud.com/vulnerabilities/51021 Common Vulnerability Exposure (CVE) ID: CVE-2009-1857 BugTraq ID: 35296 http://www.securityfocus.com/bid/35296 Bugtraq: 20090611 FortiGuard Advisory: Adobe Reader/Acrobat TrueType Font Processing Memory Corruption Vulnerability (Google Search) http://www.securityfocus.com/archive/1/504239/100/0/threaded http://www.fortiguardcenter.com/advisory/FGA-2009-25.html Common Vulnerability Exposure (CVE) ID: CVE-2009-1858 BugTraq ID: 35298 http://www.securityfocus.com/bid/35298 XForce ISS Database: acrobat-reader-jbig2-code-execution(51016) https://exchange.xforce.ibmcloud.com/vulnerabilities/51016 Common Vulnerability Exposure (CVE) ID: CVE-2009-1859 BugTraq ID: 35289 http://www.securityfocus.com/bid/35289 Common Vulnerability Exposure (CVE) ID: CVE-2009-1861 BugTraq ID: 35295 http://www.securityfocus.com/bid/35295 CERT/CC vulnerability note: VU#568153 http://www.kb.cert.org/vuls/id/568153 Common Vulnerability Exposure (CVE) ID: CVE-2009-2028 XForce ISS Database: acrobat-reader-multiple-unspecified(51126) https://exchange.xforce.ibmcloud.com/vulnerabilities/51126
Copyright	Copyright (C) 2009 E-Soft Inc.