[Other] UPDATE: Mehrere Schwachstellen im Adobe Reader und Acrobat – APSB11-03

[Other] UPDATE: Mehrere Schwachstellen im Adobe Reader und Acrobat - APSB11-03

Von

—–BEGIN PGP SIGNED MESSAGE—–
Hash: SHA1

Liebe Kolleginnen und Kollegen,

soeben erreichte uns nachfolgende Warnung. Wir geben diese Informationen
unveraendert an Sie weiter.

Bitte beachten Sie, dass dies ein Update des Advisories ist, das die
folgenden Aenderungen betrifft:

Mit diesem Update gibt Adobe die Verfuegbarkeit neuer Versionen fuer
Unix Umgebungen bekannt.

CVE-2010-4091 – Schwachstelle in der printSeps() Funktion im Adobe
Reader

Aufgrund eines Fehlers in der printSeps() Funktion im Adobe Reader
koennen kritische Speicherbereiche im Heap-Segment ueberschrieben
werden. Ein entfernter Angreifer kann diese Schwachstelle mittels eines
speziell konstruierten PDF-Dokumentes ausnutzen, um beliebige Befehle
mit den Rechten des Benutzers auszufuehren.

CVE-2011-0562 / CVE-2011-0563 / CVE-2011-0564 / CVE-2011-0565 /
CVE-2011-0566 / CVE-2011-0567 / CVE-2011-0568 / CVE-2011-0570 /
CVE-2011-0585 / CVE-2011-0586 / CVE-2011-0587 / CVE-2011-0588 /
CVE-2011-0589 / CVE-2011-0590 / CVE-2011-0591 / CVE-2011-0592 /
CVE-2011-0593 / CVE-2011-0594 / CVE-2011-0595 / CVE-2011-0596 /
CVE-2011-0598 / CVE-2011-0599 / CVE-2011-0600 / CVE-2011-0602 /
CVE-2011-0603 / CVE-2011-0604 / CVE-2011-0605 / CVE-2011-0606 – Mehrere
Schwachstellen in Adobe Reader und Acrobat

In Adobe Reader und Acrobat sind mehrere Schwachstellen, u.a. bei der
Eingabepruefung, beim Parsen von unterschiedlichen Dateien, beim Laden
von Bibliotheken, sowie unterschiedliche ‘memory corruption’ Fehler
vorhanden. Ein entfernter Angreifer kann diese Schwachstellen im
schlimmsten Fall zum Ausfuehren von beliebigen Befehlen mit
Benutzer-Rechten ausnutzen, indem er diesen dazu bringt, ein
entsprechend aufgebautes PDF zu oeffnen.

Betroffen sind die folgenden Software Pakete und Plattformen:

Adobe Reader X (10.0)
Adobe Reader 9.4.1 und fruehere Versionen
Adobe Acrobat X (10.0) und fruehere Versionen

Alle Plattformen auf denen der Adobe Reader und Acrobat laufen.

Vom Hersteller werden ueberarbeitete Pakete zur Verfuegung gestellt.

(c) der deutschen Zusammenfassung bei DFN-CERT Services GmbH; die
Verbreitung, auch auszugsweise, ist nur unter Hinweis auf den Urheber,
DFN-CERT Services GmbH, und nur zu nicht kommerziellen Zwecken
gestattet.

Mit freundlichen Gruessen,
Torsten Voss

– —

Dipl.-Ing.(FH) Torsten Voss (Incident Response Team)

DFN-CERT Services GmbH, https://www.dfn-cert.de, Phone +49 40 808077-590
Sitz / Register: Hamburg, AG Hamburg, HRB 88805, Ust-IdNr.: DE 232129737
Sachsenstrasse 5, 20097 Hamburg/Germany, CEO: Dr. Klaus-Peter Kossakowski

Automatische Warnmeldungen https://www.cert.dfn.de/autowarn

Security updates available for Adobe Reader and Acrobat

Release date: February 8, 2011

Last updated: February 22, 2011

Vulnerability identifier: APSB11-03

CVE Numbers: CVE-2010-4091, CVE-2011-0562, CVE-2011-0563, CVE-2011-0564,
CVE-2011-0565, CVE-2011-0566, CVE-2011-0567, CVE-2011-0568, CVE-2011-0570,
CVE-2011-0585, CVE-2011-0586, CVE-2011-0587, CVE-2011-0588, CVE-2011-0589,
CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0594,
CVE-2011-0595, CVE-2011-0596, CVE-2011-0598, CVE-2011-0599, CVE-2011-0600,
CVE-2011-0602, CVE-2011-0603, CVE-2011-0604, CVE-2011-0605, CVE-2011-0606

Platform: All Platforms
Summary

Critical vulnerabilities have been identified in Adobe Reader X (10.0) for
Windows and Macintosh; Adobe Reader 9.4.1 and earlier versions for Windows,
Macintosh and UNIX; and Adobe Acrobat X (10.0) and earlier versions for Windows
and Macintosh. These vulnerabilities could cause the application to crash and
potentially allow an attacker to take control of the affected system. Risk for
Adobe Reader X users is significantly lower, as none of these issues bypass
Protected Mode mitigations.

These updates also incorporate the Adobe Flash Player update as noted in
Security Bulletin APSB11-02.

Adobe recommends users of Adobe Reader X (10.0) and earlier versions for Windows
and Macintosh update to Adobe Reader X (10.0.1), available now. Adobe recommends
users of Adobe Reader 9.4.1 for UNIX update to Adobe Reader 9.4.2. For users of
Adobe Reader 9.4.1 and earlier versions for Windows and Macintosh who cannot
update to Adobe Reader X (10.0.1), Adobe has made available updates, Adobe
Reader 9.4.2 and Adobe Reader 8.2.6. Adobe recommends users of Adobe Acrobat X
(10.0) for Windows and Macintosh update to Adobe Acrobat X (10.0.1). Adobe
recommends users of Adobe Acrobat 9.4.1 and earlier versions for Windows and
Macintosh update to Adobe Acrobat 9.4.2, and users of Adobe Acrobat 8.2.5 and
earlier versions for Windows and Macintosh update to Adobe Acrobat 8.2.6.

The next quarterly security updates for Adobe Reader and Acrobat are currently
scheduled for June 14, 2011.
Affected software versions

* Adobe Reader X (10.0) and for Windows and Macintosh
* Adobe Reader 9.4.1 and earlier versions for Windows, Macintosh and UNIX
* Adobe Acrobat X (10.0) and earlier versions for Windows and Macintosh

Solution

Adobe recommends users update their software installations by following the
instructions below:

Adobe Reader
Users on Windows and Macintosh can utilize the product’s update mechanism. The
default configuration is set to run automatic update checks on a regular
schedule. Update checks can be manually activated by choosing Help > Check for
Updates.

Adobe Reader users on Windows can also find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows.

Adobe Reader users on Macintosh can also find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Macintosh
.

Adobe Reader users on UNIX can find the appropriate update here:
ftp://ftp.adobe.com/pub/adobe/reader/unix/9.x.

Adobe Acrobat
Users can utilize the product’s update mechanism. The default configuration is
set to run automatic update checks on a regular schedule. Update checks can be
manually activated by choosing Help > Check for Updates.

Acrobat Standard and Pro users on Windows can also find the appropriate update
here:
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows.

Acrobat Pro Extended users on Windows can also find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=158&platform=Windows.

Acrobat 3D users on Windows can also find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=112&platform=Windows.

Acrobat Pro users on Macintosh can also find the appropriate update here:
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Macintosh.
Severity rating

Adobe categorizes these as critical updates and recommends that users apply the
latest updates for their product installations by following the instructions in
the “Solution” section above.
Details

Critical vulnerabilities have been identified in Adobe Reader X (10.0) for
Windows and Macintosh; Adobe Reader 9.4.1 and earlier versions for Windows,
Macintosh and UNIX; and Adobe Acrobat X (10.0) and earlier versions for Windows
and Macintosh. These vulnerabilities could cause the application to crash and
potentially allow an attacker to take control of the affected system. Risk for
Adobe Reader X users is significantly lower, as none of these issues bypass
Protected Mode mitigations.

Adobe recommends users of Adobe Reader X (10.0) and earlier versions for Windows
and Macintosh update to Adobe Reader X (10.0.1), available now. Adobe recommends
users of Adobe Reader 9.4.1 for UNIX update to Adobe Reader 9.4.2. For users of
Adobe Reader 9.4.1 and earlier versions for Windows and Macintosh who cannot
update to Adobe Reader X (10.0.1), Adobe has made available updates, Adobe
Reader 9.4.2 and Adobe Reader 8.2.6. Adobe recommends users of Adobe Acrobat X
(10.0) for Windows and Macintosh update to Adobe Acrobat X (10.0.1). Adobe
recommends users of Adobe Acrobat 9.4.1 and earlier versions for Windows and
Macintosh update to Adobe Acrobat 9.4.2, and users of Adobe Acrobat 8.2.5 and
earlier versions for Windows and Macintosh update to Adobe Acrobat 8.2.6.

These updates resolve an input validation vulnerability that could lead to code
execution (CVE-2010-4091).

These updates resolve a library-loading vulnerability that could lead to code
execution (CVE-2011-0562).

These updates resolve a memory corruption vulnerability that could lead to code
execution (CVE-2011-0563).

These updates resolve a Windows-only file permissions issue that could lead to
privilege escalation (CVE-2011-0564).

These updates resolve a denial of service vulnerability; arbitrary code
execution has not been demonstrated, but may be possible (CVE-2011-0565).

These updates resolve an image-parsing memory corruption vulnerability that
could lead to code execution (CVE-2011-0566).

These updates resolve an image-parsing memory corruption vulnerability that
could lead to code execution (CVE-2011-0567).

These updates resolve a denial of service vulnerability; arbitrary code
execution has not been demonstrated, but may be possible (Macintosh only)
(CVE-2011-0568).

These updates resolve a library-loading vulnerability that could lead to code
execution (CVE-2011-0570).

These updates resolve a denial of service vulnerability; arbitrary code
execution has not been demonstrated, but may be possible (CVE-2011-0585).

These updates resolve an input validation vulnerability that could lead to code
execution (CVE-2011-0586).

These updates resolve an input validation vulnerability that could lead to a
cross-site scripting vulnerability (CVE-2011-0587).

These updates resolve a library-loading vulnerability that could lead to code
execution (CVE-2011-0588).

These updates resolve a memory corruption vulnerability that could lead to code
execution (CVE-2011-0589).

These updates resolve a 3D file parsing input validation vulnerability that
could lead to code execution (CVE-2011-0590).

These updates resolve a 3D file parsing input validation vulnerability that
could lead to code execution (CVE-2011-0591).

These updates resolve a 3D file parsing input validation vulnerability that
could lead to code execution (CVE-2011-0592).

These updates resolve a 3D file parsing input validation vulnerability that
could lead to code execution (CVE-2011-0593).

These updates resolve a font parsing input validation vulnerability that could
lead to code execution (CVE-2011-0594).

These updates resolve a 3D file parsing input validation vulnerability that
could lead to code execution (CVE-2011-0595).

These updates resolve a image parsing input validation vulnerability that could
lead to code execution (CVE-2011-0596).

These updates resolve an image parsing input validation vulnerability that could
lead to code execution (CVE-2011-0598).

These updates resolve an image parsing input validation vulnerability that could
lead to code execution (CVE-2011-0599).

These updates resolve a 3D file parsing input validation vulnerability that
could lead to code execution (CVE-2011-0600).

These updates resolve an image parsing input validation vulnerability that could
lead to code execution (CVE-2011-0602).

These updates resolve an image-parsing memory corruption vulnerability that
could lead to code execution (CVE-2011-0603).

These updates resolve an input validation vulnerability that could lead to
cross-site scripting (CVE-2011-0604).

These updates resolve a memory corruption vulnerability that could lead to code
execution (Macintosh only) (CVE-2011-0605).

These updates resolve a memory corruption vulnerability that could lead to code
execution (CVE-2011-0606).

These updates also incorporate the Adobe Flash Player update as noted in
Security Bulletin APSB11-02.
Acknowledgements

Adobe would like to thank the following individuals and organizations for
reporting the relevant issues and for working with Adobe to help protect our
customers:

* Mitja Kolsek of ACROS Security (CVE-2011-0562)
* Bing Liu of Fortinet’s FortiGuard Labs (CVE-2011-0563)
* Matthew Pun (CVE-2011-0564)
* Tavis Ormandy of the Google Security Team (CVE-2011-0565, CVE-2011-0566,
CVE-2011-0594)
* Abdullah Ada through TippingPoint’s Zero Day Initiative (CVE-2011-0567)
* James Quirk of Los Alamos, New Mexico (CVE-2011-0568)
* Haifei Li of Fortinet’s FortiGuard Labs (CVE-2011-0570)
* Brett Gervasoni of Sense of Security (CVE-2011-0585)
* Joe Schatz of United States Senate, Office of the Sergeant at Arms, IT
Security (CVE-2011-0586)
* Billy Rios from the Google Security Team (CVE-2011-0587, CVE-2011-0604)
* Parvez Anwar (CVE-2011-0588)
* Greg MacManus of iSIGHT Partners Labs (CVE-2011-0588)
* CESG (CVE-2011-0589)
* Peter Vreugdenhil through TippingPoint’s Zero Day Initiative
(CVE-2011-0590, CVE-2011-0591, CVE-2011-0592, CVE-2011-0593, CVE-2011-0595,
CVE-2011-0596, CVE-2011-0599)
* Sebastian Apelt through TippingPoint’s Zero Day Initiative
(CVE-2011-0598).
* el through TippingPoint’s Zero Day Initiative (CVE-2011-0600)
* Sean Larsson, iDefense Labs (CVE-2011-0602)
* Will Dormann of CERT (CVE-2011-0603)
* Marc Schoenefeld of Red Hat Security Response Team (CVE-2011-0605)
* An anonymous reporter through TippingPoint’s Zero Day Initiative
(CVE-2011-0606)

Revisions

February 22, 2011 – Updated with information on UNIX version.
February 8, 2011 – Bulletin released.

—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2.0.9 (GNU/Linux)

iQEcBAEBAgAGBQJNZPA8AAoJEJtyb8U7iGZBYGkH/3vVAlq/pFP5R6RuloMVxmpQ
T6NpFzlIzu4Kw+07JkLyCxy3JJdQmzvvo8TDWH35rZXIsKm5krCXePYjUBD1Yu3t
lpKnoYSiFr1SGa1fpLaCl0n7NwxecME6nSpbNVvnt6YhmhfiloRQFtXYDB66Zmxc
jmKeX6NZ41DWpc7rNAvetFZPQsIdK3Rvw3VkQrLlCnKZh5xyKlxnYT8JgHg2T3jb
OxMqz2fk1Li1SOwy+5hIvGG1gvwvMbaCcBlv3AdCaMlshb9dO59M4+d6dh40dd0n
XYnXRk4GDvh6Gn3BhGbCPmM/JyVyTTbsXnIZdOENHvqcdred0ynx2HmCT9gouZs=
=8IUY
—–END PGP SIGNATURE—–

© COMPUTEC MEDIA GmbH
Nach oben