Buffer overflow : Adobe Reader 'File Extension' Buffer Overflow Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.804260

Categoría: Buffer overflow

Título: Adobe Reader 'File Extension' Buffer Overflow Vulnerability - Windows

Resumen: Adobe Reader is prone to a buffer overflow vulnerability.

Descripción: Summary:
Adobe Reader is prone to a buffer overflow vulnerability.

Vulnerability Insight:
Flaw exists due to a parsing and boundary error when splitting filename paths
into components.

Vulnerability Impact:
Successful exploitation will allow attacker to conduct denial of service and
possibly execute arbitrary code.

Affected Software/OS:
Adobe Reader version 6.0 and 6.0.1 on Windows.

Solution:
Upgrade to Adobe Reader 6.0.2 or later.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0632
http://www.idefense.com/application/poi/display?id=116&type=vulnerabilities
http://www.adobe.com/support/techdocs/34222.htm
XForce ISS Database: adobe-acrobat-null-bo(16667)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16667

Copyright Copyright (C) 2014 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.804260
Categoría:	Buffer overflow
Título:	Adobe Reader 'File Extension' Buffer Overflow Vulnerability - Windows
Resumen:	Adobe Reader is prone to a buffer overflow vulnerability.
Descripción:	Summary: Adobe Reader is prone to a buffer overflow vulnerability. Vulnerability Insight: Flaw exists due to a parsing and boundary error when splitting filename paths into components. Vulnerability Impact: Successful exploitation will allow attacker to conduct denial of service and possibly execute arbitrary code. Affected Software/OS: Adobe Reader version 6.0 and 6.0.1 on Windows. Solution: Upgrade to Adobe Reader 6.0.2 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0632 http://www.idefense.com/application/poi/display?id=116&type=vulnerabilities http://www.adobe.com/support/techdocs/34222.htm XForce ISS Database: adobe-acrobat-null-bo(16667) https://exchange.xforce.ibmcloud.com/vulnerabilities/16667
Copyright	Copyright (C) 2014 Greenbone AG