Alert GCSA-08113 - Vulnerabilita' in Adobe Reader e Acrobat
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
************************************************************************
Alert ID : GCSA-08113
Data : 7 novembre 2008
Titolo : Vulnerabilita' in Adobe Reader e Acrobat
************************************************************************
:: Descrizione del problema
Adobe ha rilasciato il bollettino di sicurezza APSB08-19 per
risolvere varie vulnerabilita' che affliggono i prodotti Adobe Reader
e Acrobat.
:: Software interessato
* Adobe Reader versione 8.1.2 e precedenti
* Adobe Acrobat (Professional, 3D, e Standard) versione 8.1.2 e
precedenti
:: Impatto
- Esecuzione di codice arbitrario
- Compromissione di sistema
- Condizioni di denial of service
- Ottenimento di privilegi piu' elevati
:: Soluzione
Aggiornare Adobe Reader e Acrobat seguendo i suggerimenti
divulgati nel bollettino di sicurezza Adobe:
http://www.adobe.com/support/security/bulletins/apsb08-19.html
:: Riferimenti
Bollettino di sicurezza Adobe - APSB08-19
http://www.adobe.com/support/security/bulletins/apsb08-19.html
Technical Cyber Security Alert TA08-309A
http://www.us-cert.gov/cas/techalerts/TA08-309A.html
US-CERT VU#593409:
http://www.kb.cert.org/vuls/id/593409
ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-08-072/
http://www.zerodayinitiative.com/advisories/ZDI-08-073/
http://www.zerodayinitiative.com/advisories/ZDI-08-074/
iDefense Labs:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=754
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=755
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=756
Security Focus
http://www.securityfocus.com/bid/32100
Secunia
http://secunia.com/advisories/29773/
CVE Mitre:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2992
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4815
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSRQSRPOB+SpikaiRAQISwwQAnF98E04u8XYjxqgy42/Pm0OIE/lQmqDK
x+cduKreV8pUkJ5aXKGOc757HBwW1is/eIKgucUdR9L/UoEeTrBMt1OlkRymttZt
2MAosUE0/l12urgWVYyW1Do5CY/m3BSJP1F6Z3ngtbsjZ+wOGkHYutu+oCzLBLxA
+4YyOVqHP0U=
=/u2Z
-----END PGP SIGNATURE-----
Hash: SHA1
************************************************************************
Alert ID : GCSA-08113
Data : 7 novembre 2008
Titolo : Vulnerabilita' in Adobe Reader e Acrobat
************************************************************************
:: Descrizione del problema
Adobe ha rilasciato il bollettino di sicurezza APSB08-19 per
risolvere varie vulnerabilita' che affliggono i prodotti Adobe Reader
e Acrobat.
:: Software interessato
* Adobe Reader versione 8.1.2 e precedenti
* Adobe Acrobat (Professional, 3D, e Standard) versione 8.1.2 e
precedenti
:: Impatto
- Esecuzione di codice arbitrario
- Compromissione di sistema
- Condizioni di denial of service
- Ottenimento di privilegi piu' elevati
:: Soluzione
Aggiornare Adobe Reader e Acrobat seguendo i suggerimenti
divulgati nel bollettino di sicurezza Adobe:
http://www.adobe.com/support/security/bulletins/apsb08-19.html
:: Riferimenti
Bollettino di sicurezza Adobe - APSB08-19
http://www.adobe.com/support/security/bulletins/apsb08-19.html
Technical Cyber Security Alert TA08-309A
http://www.us-cert.gov/cas/techalerts/TA08-309A.html
US-CERT VU#593409:
http://www.kb.cert.org/vuls/id/593409
ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-08-072/
http://www.zerodayinitiative.com/advisories/ZDI-08-073/
http://www.zerodayinitiative.com/advisories/ZDI-08-074/
iDefense Labs:
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=754
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=755
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=756
Security Focus
http://www.securityfocus.com/bid/32100
Secunia
http://secunia.com/advisories/29773/
CVE Mitre:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2992
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2549
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4812
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4815
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSRQSRPOB+SpikaiRAQISwwQAnF98E04u8XYjxqgy42/Pm0OIE/lQmqDK
x+cduKreV8pUkJ5aXKGOc757HBwW1is/eIKgucUdR9L/UoEeTrBMt1OlkRymttZt
2MAosUE0/l12urgWVYyW1Do5CY/m3BSJP1F6Z3ngtbsjZ+wOGkHYutu+oCzLBLxA
+4YyOVqHP0U=
=/u2Z
-----END PGP SIGNATURE-----