Test ID:	1.3.6.1.4.1.25623.1.0.66110
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 200910-03 (acroread)
Summary:	The remote host is missing updates announced in;advisory GLSA 200910-03.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 200910-03. Vulnerability Insight: Multiple vulnerabilities in Adobe Reader might result in the execution of arbitrary code, or other attacks. Solution: All Adobe Reader users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose =app-text/acroread-9.2 CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-0045 BugTraq ID: 21858 http://www.securityfocus.com/bid/21858 Bugtraq: 20070103 Adobe Acrobat Reader Plugin - Multiple Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/455801/100/0/threaded Bugtraq: 20070103 RE: [WEB SECURITY] Universal XSS with PDF files: highly dangerous (Google Search) http://www.securityfocus.com/archive/1/455836/100/0/threaded Bugtraq: 20070103 Re: Universal XSS with PDF files: highly dangerous (Google Search) http://www.securityfocus.com/archive/1/455800/100/0/threaded Bugtraq: 20070103 Re: [WEB SECURITY] Universal XSS with PDF files: highly dangerous (Google Search) http://www.securityfocus.com/archive/1/455831/100/0/threaded Bugtraq: 20070103 Universal XSS with PDF files: highly dangerous (Google Search) http://www.securityfocus.com/archive/1/455790/100/0/threaded Bugtraq: 20070104 Universal PDF XSS After Party (Google Search) http://www.securityfocus.com/archive/1/455906/100/0/threaded Cert/CC Advisory: TA09-286B http://www.us-cert.gov/cas/techalerts/TA09-286B.html CERT/CC vulnerability note: VU#815960 http://www.kb.cert.org/vuls/id/815960 http://security.gentoo.org/glsa/glsa-200701-16.xml HPdes Security Advisory: HPSBUX02153 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00771742 HPdes Security Advisory: SSRT061181 http://events.ccc.de/congress/2006/Fahrplan/attachments/1158-Subverting_Ajax.pdf http://www.disenchant.ch/blog/hacking-with-browser-plugins/34 http://www.gnucitizen.org/blog/universal-pdf-xss-after-party http://www.wisec.it/vulns.php?page=9 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6487 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9693 RedHat Security Advisories: RHSA-2007:0017 https://rhn.redhat.com/errata/RHSA-2007-0017.html http://www.redhat.com/support/errata/RHSA-2007-0021.html http://securitytracker.com/id?1017469 http://securitytracker.com/id?1023007 http://secunia.com/advisories/23483 http://secunia.com/advisories/23691 http://secunia.com/advisories/23812 http://secunia.com/advisories/23877 http://secunia.com/advisories/23882 http://secunia.com/advisories/24457 http://secunia.com/advisories/24533 http://secunia.com/advisories/33754 http://slackware.com/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.338131 http://securityreason.com/securityalert/2090 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102847-1 SuSE Security Announcement: SUSE-SA:2007:011 (Google Search) http://lists.suse.com/archive/suse-security-announce/2007-Jan/0012.html http://www.vupen.com/english/advisories/2007/0032 http://www.vupen.com/english/advisories/2007/0957 http://www.vupen.com/english/advisories/2009/2898 XForce ISS Database: adobe-acrobat-pdf-xss(31271) https://exchange.xforce.ibmcloud.com/vulnerabilities/31271 Common Vulnerability Exposure (CVE) ID: CVE-2007-0048 http://osvdb.org/31596 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6348 XForce ISS Database: adobe-acrobat-character-dos(31273) https://exchange.xforce.ibmcloud.com/vulnerabilities/31273 Common Vulnerability Exposure (CVE) ID: CVE-2009-2979 BugTraq ID: 36638 http://www.securityfocus.com/bid/36638 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6280 Common Vulnerability Exposure (CVE) ID: CVE-2009-2980 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5964 Common Vulnerability Exposure (CVE) ID: CVE-2009-2981 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6284 Common Vulnerability Exposure (CVE) ID: CVE-2009-2982 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6365 Common Vulnerability Exposure (CVE) ID: CVE-2009-2983 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5636 Common Vulnerability Exposure (CVE) ID: CVE-2009-2985 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6145 Common Vulnerability Exposure (CVE) ID: CVE-2009-2986 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5888 Common Vulnerability Exposure (CVE) ID: CVE-2009-2988 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6483 Common Vulnerability Exposure (CVE) ID: CVE-2009-2990 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6371 Common Vulnerability Exposure (CVE) ID: CVE-2009-2991 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5557 Common Vulnerability Exposure (CVE) ID: CVE-2009-2993 BugTraq ID: 36664 http://www.securityfocus.com/bid/36664 CERT/CC vulnerability note: VU#257117 http://www.kb.cert.org/vuls/id/257117 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5822 Common Vulnerability Exposure (CVE) ID: CVE-2009-2994 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6156 Common Vulnerability Exposure (CVE) ID: CVE-2009-2996 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5560 Common Vulnerability Exposure (CVE) ID: CVE-2009-2997 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6481 Common Vulnerability Exposure (CVE) ID: CVE-2009-2998 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6418 Common Vulnerability Exposure (CVE) ID: CVE-2009-3431 BugTraq ID: 35148 http://www.securityfocus.com/bid/35148 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6532 Common Vulnerability Exposure (CVE) ID: CVE-2009-3458 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6499 Common Vulnerability Exposure (CVE) ID: CVE-2009-3459 BugTraq ID: 36600 http://www.securityfocus.com/bid/36600 ISS Security Advisory: 20091009 Adobe Acrobat and Acrobat Reader Remote Code Execution http://www.iss.net/threats/348.html http://isc.sans.org/diary.html?storyid=7300 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6534 http://secunia.com/advisories/36983 http://www.vupen.com/english/advisories/2009/2851 XForce ISS Database: adobe-reader-pdf-code-execution(53691) https://exchange.xforce.ibmcloud.com/vulnerabilities/53691 Common Vulnerability Exposure (CVE) ID: CVE-2009-3462 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6429
Copyright	Copyright (C) 2009 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.