Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.66029
Kategorie:Mandrake Local Security Checks
Titel:Mandrake Security Advisory MDVSA-2009:272 (libmikmod)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:
The remote host is missing an update to libmikmod
announced via advisory MDVSA-2009:272.

Multiple vulnerabilities has been found and corrected in libmikmod:

libmikmod 3.1.9 through 3.2.0, as used by MikMod, SDL-mixer, and
possibly other products, relies on the channel count of the last
loaded song, rather than the currently playing song, for certain
playback calculations, which allows user-assisted attackers to cause
a denial of service (application crash) by loading multiple songs
(aka MOD files) with different numbers of channels (CVE-2007-6720).

libmikmod 3.1.11 through 3.2.0, as used by MikMod and possibly other
products, allows user-assisted attackers to cause a denial of service
(application crash) by loading an XM file (CVE-2009-0179).

This update fixes these vulnerabilities.

Affected: 2008.1, 2009.0, Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2009:272

CVSS Score:
4.3

CVSS Vector:
AV:N/AC:M/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2007-6720
BugTraq ID: 33235
http://www.securityfocus.com/bid/33235
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01305.html
https://www.redhat.com/archives/fedora-package-announce/2009-August/msg01312.html
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=461519
http://openwall.com/lists/oss-security/2009/01/13/2
http://secunia.com/advisories/34259
SuSE Security Announcement: SUSE-SR:2009:006 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00001.html
Common Vulnerability Exposure (CVE) ID: CVE-2009-0179
BugTraq ID: 33240
http://www.securityfocus.com/bid/33240
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476339
CopyrightCopyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.