Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2008:0144
HistoryFeb 22, 2008 - 12:00 a.m.

(RHSA-2008:0144) Critical: acroread security update

2008-02-2200:00:00
access.redhat.com
22

EPSS

0.972

Percentile

99.8%

JSON

The Adobe Reader allows users to view and print documents in portable
document format (PDF).

Several flaws were found in the way Adobe Reader processed malformed PDF
files. An attacker could create a malicious PDF file which could execute
arbitrary code if opened by a victim. (CVE-2007-5659, CVE-2007-5663,
CVE-2007-5666, CVE-2008-0726)

A flaw was found in the way the Adobe Reader browser plug-in honored
certain requests. A malicious PDF file could cause the browser to request
an unauthorized URL, allowing for a cross-site request forgery attack.
(CVE-2007-0044)

A flaw was found in Adobe Readerโ€™s JavaScript API DOC.print function. A
malicious PDF file could silently trigger non-interactive printing of the
document, causing multiple copies to be printed without the users consent.
(CVE-2008-0667)

Additionally, this update fixes multiple unknown flaws in Adobe Reader.
When the information regarding these flaws is made public by Adobe, it will
be added to this advisory. (CVE-2008-0655)

Note: Adobe have yet to release security fixed versions of Adobe 7. All
users of Adobe Reader are, therefore, advised to install these updated
packages. They contain Adobe Reader version 8.1.2, which is not vulnerable
to these issues.

OSVersionArchitecturePackageVersionFilename
RedHat5i386acroread-plugin<ย 8.1.2-1.el5.3acroread-plugin-8.1.2-1.el5.3.i386.rpm

Related

nessus 14
seebug 1
openvas 14
gentoo 2
securityvulns 7
suse 2
prion 7
cve 7
cvelist 7
nvd 7
ubuntucve 6
attackerkb 3
saint 4
cert 2
checkpoint_advisories 3
metasploit 1
cisa_kev 2
canvas 1
exploitdb 3
packetstorm 1
zdi 1
threatpost 2
nessus
nessus
RHEL 3 / 4 / 5 : acroread (RHSA-2008:0144)
2009-08-24 00:00:00
Adobe Acrobat < 8.1.2 / 7.1.0 Multiple Vulnerabilities
2009-08-28 00:00:00
GLSA-200803-01 : Adobe Acrobat Reader: Multiple vulnerabilities
2008-03-04 00:00:00
seebug
seebug
Adobe Acrobatๅ’ŒReaderๅคšไธชๅฎ‰ๅ…จๆผๆดž
2008-02-21 00:00:00
openvas
openvas
Adobe Reader Multiple Vulnerabilities (Feb 2008) - Mac OS X
2014-04-08 00:00:00
Adobe Reader Multiple Vulnerabilities (Feb 2008) - Windows
2014-04-08 00:00:00
Adobe Reader Multiple Vulnerabilities (Feb 2008) - Linux
2014-04-08 00:00:00
gentoo
gentoo
Adobe Acrobat Reader: Multiple vulnerabilities
2008-03-02 00:00:00
Adobe Acrobat Reader: Multiple vulnerabilities
2007-01-22 00:00:00
securityvulns
securityvulns
Adobe Acrobat / Reader multiple security vulnerabilities
2008-02-12 00:00:00
iDefense Security Advisory 02.08.08: Adobe Reader and Acrobat JavaScript Insecure Method Exposure Vulnerability
2008-02-10 00:00:00
iDefense Security Advisory 02.08.08: Adobe Reader Security Provider Unsafe Libary Path Vulnerability
2008-02-10 00:00:00
suse
suse
remote code execution in acroread
2008-02-18 17:44:23
remote code execution in acroread
2007-01-22 18:37:17
prion
prion
Code injection
2008-02-12 19:00:00
Design/Logic Flaw
2008-02-12 19:00:00
Buffer overflow
2008-02-12 19:00:00
cve
cve
CVE-2007-5663
2008-02-12 19:00:00
CVE-2007-5666
2008-02-12 19:00:00
CVE-2007-5659
2008-02-12 19:00:00
cvelist
cvelist
CVE-2007-5663
2008-02-12 18:00:00
CVE-2007-5666
2008-02-12 18:00:00
CVE-2007-5659
2008-02-12 18:00:00
nvd
nvd
CVE-2007-5663
2008-02-12 19:00:00
CVE-2007-5666
2008-02-12 19:00:00
CVE-2007-5659
2008-02-12 19:00:00
ubuntucve
ubuntucve
CVE-2007-5663
2008-02-12 00:00:00
CVE-2007-5666
2008-02-12 00:00:00
CVE-2007-5659
2008-02-12 00:00:00
attackerkb
attackerkb
CVE-2007-5659
2008-02-12 00:00:00
CVE-2008-0667
2008-02-11 00:00:00
CVE-2008-0655
2008-02-07 00:00:00
saint
saint
Adobe Acrobat and Reader JavaScript buffer overflow
2008-11-13 00:00:00
Adobe Acrobat and Reader JavaScript buffer overflow
2008-11-13 00:00:00
Adobe Acrobat and Reader JavaScript buffer overflow
2008-11-13 00:00:00
cert
cert
Adobe Reader EScript.api arbitrary code execution
2008-02-12 00:00:00
Adobe Reader and Acrobat JavaScript methods buffer overflow vulnerabilities
2008-02-11 00:00:00
checkpoint_advisories
checkpoint_advisories
Adobe Multiple Products PDF JavaScript Method Buffer Overflow - Ver2 (CVE-2007-5659)
2014-03-31 00:00:00
Adobe Multiple Products PDF JavaScript Method Buffer Overflow (CVE-2007-5659)
2010-02-22 00:00:00
Update Protection against Multiple Adobe Acrobat Vulnerabilities
2007-01-21 00:00:00
metasploit
metasploit
Adobe Collab.collectEmailInfo() Buffer Overflow
2009-03-28 16:14:32
cisa_kev
cisa_kev
Adobe Acrobat and Reader Buffer Overflow Vulnerability
2022-06-08 00:00:00
Adobe Acrobat and Reader Unspecified Vulnerability
2022-06-08 00:00:00
canvas
canvas
Immunity Canvas: ACROBAT_JS
2008-02-12 19:00:00
exploitdb
exploitdb
Adobe - &#039;Collab.collectEmailInfo()&#039; Local Buffer Overflow (Metasploit)
2010-09-25 00:00:00
Adobe Acrobat and Reader 8.1.1 - Multiple Arbitrary Code Execution / Security Vulnerabilities
2008-02-06 00:00:00
Adobe Reader 9.1.3 Plugin - Cross-Site Scripting
2007-01-03 00:00:00
packetstorm
packetstorm
Adobe Collab.collectEmailInfo() Buffer Overflow
2009-11-26 00:00:00
zdi
zdi
Adobe Acrobat Javascript for PDF Integer Overflow Vulnerability
2008-02-11 00:00:00
threatpost
threatpost
Main PHP-Nuke Site Compromised
2010-05-07 15:37:38
PBS Website Compromised, Used to Serve Exploits
2009-09-23 22:41:03

EPSS

0.972

Percentile

99.8%

JSON
Related for RHSA-2008:0144
nessus14seebug1openvas14gentoo2securityvulns7suse2prion7cve7cvelist7nvd7ubuntucve6attackerkb3saint4cert2checkpoint_advisories3metasploit1cisa_kev2canvas1exploitdb3packetstorm1zdi1threatpost2