|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2004-432: acroread Vulnerability Assessment Details
|
RHSA-2004-432: acroread |
||
Check for the version of the acroread packages Detailed Explanation for this Vulnerability Assessment An updated Adobe Acrobat Reader package that fixes multiple security issues is now available. The Adobe Acrobat Reader browser permits for the viewing, distributing, and printing of documents in portable document format (PDF). iDEFENSE has reported that Adobe Acrobat Reader 5.0 contains a buffer overflow when decoding uuencoded documents. A possible hacker could execute arbitrary code on a victim's machine if a user opens a specially crafted uuencoded document. This issue poses the threat of remote execution, since Acrobat Reader may be the default handler for PDF files. The Common Vulnerabilities and Exposures project has assigned the name CVE-2004-0631 to this issue. iDEFENSE also reported that Adobe Acrobat Reader 5.0 contains an input validation error in its uuencoding feature. A possible hacker could create a file with a specially crafted file name which could lead to arbitrary command execution on a victim's machine. The Common Vulnerabilities and Exposures project has assigned the name CVE-2004-0630 to this issue. All users of Acrobat Reader are advised to upgrade to this updated package, which is not vulnerable to these issues. Solution : http://rhn.redhat.com/errata/RHSA-2004-432.html Network Security Threat Level: High Networks Security ID: Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security |
||
Cables, Connectors |
Cisco SG95-16 16-Port Gigabit Switch SG95-16-KR
$47.00
Cisco WS-C3750-48PS-S 48-Port Managed Gigabit Switch
$45.00
Pakedge SE-18 Unmanaged 16-Port Ethernet Switch With 2-SFP Ports
$54.99
Cisco WS-C2960C-8PC-L 2960-C 8 Ports PoE Manageable Switch 1 Year Warranty
$77.00
New Linksys SE3005 5-port Gigabit Ethernet Switch
$15.99
Linksys SE3008 8 Ports Rack Mountable Gigabit Ethernet Switch
$18.99
*NETGEAR PROSAFE (JGS524V2) 24-Port Gigabit Ethernet Switch *NO AC*
$29.99
TP-Link TL-SF1005D 5-Port 10/100Mbps Fast Ethernet Desktop Switch
$12.99
YuanLey 10 Port Gigabit PoE Switch With 8 Poe Unmanaged with 2 1000Mbps Uplink
$20.00
Cisco Small Business SG200-26 26 Port Smart Gigabit Ethernet Network Switch
$43.95
|
||
No Discussions have been posted on this vulnerability. |