Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.51071
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2004:674
Summary:NOSUMMARY
Description:Description:

The remote host is missing updates announced in
advisory RHSA-2004:674.

The Adobe Acrobat Reader browser allows for the viewing, distributing, and
printing of documents in portable document format (PDF).

iDEFENSE has reported that Adobe Acrobat Reader 5.0.9 contains a buffer
overflow when decoding email messages. An attacker could create a
malicious PDF file which could execute arbitrary code if opened by a
victim. The Common Vulnerabilities and Exposures project has assigned the
name CVE-2004-1152 to this issue.

All users of Acrobat Reader are advised to upgrade to this updated package,
which contains Acrobat Reader version 5.0.10 which is not vulnerable to
this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2004-674.html
http://www.idefense.com/application/poi/display?id=161&type=vulnerabilities&flashstatus=true

Risk factor : Critical

CVSS Score:
10.0

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2004-1152
CERT/CC vulnerability note: VU#253024
http://www.kb.cert.org/vuls/id/253024
http://www.idefense.com/application/poi/display?id=161&type=vulnerabilities&flashstatus=false
http://secunia.com/advisories/13474
SuSE Security Announcement: SUSE-SR:2005:001 (Google Search)
http://www.novell.com/linux/security/advisories/2005_01_sr.html
XForce ISS Database: adobe-acrobat-maillistlspdf-bo(18477)
https://exchange.xforce.ibmcloud.com/vulnerabilities/18477
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.