Test Kennung:	1.3.6.1.4.1.25623.1.0.66316
Kategorie:	Red Hat Local Security Checks
Titel:	RedHat Security Advisory RHSA-2009:1601
Zusammenfassung:	The remote host is missing updates announced in;advisory RHSA-2009:1601.;;The kdelibs packages provide libraries for the K Desktop Environment (KDE).;;A buffer overflow flaw was found in the kdelibs string to floating point;conversion routines. A web page containing malicious JavaScript could crash;Konqueror or, potentially, execute arbitrary code with the privileges of;the user running Konqueror. (CVE-2009-0689);;Users should upgrade to these updated packages, which contain a backported;patch to correct this issue. The desktop must be restarted (log out, then;log back in) for this update to take effect.
Beschreibung:	Summary: The remote host is missing updates announced in advisory RHSA-2009:1601. The kdelibs packages provide libraries for the K Desktop Environment (KDE). A buffer overflow flaw was found in the kdelibs string to floating point conversion routines. A web page containing malicious JavaScript could crash Konqueror or, potentially, execute arbitrary code with the privileges of the user running Konqueror. (CVE-2009-0689) Users should upgrade to these updated packages, which contain a backported patch to correct this issue. The desktop must be restarted (log out, then log back in) for this update to take effect. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0689 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html http://lists.apple.com/archives/security-announce/2010/Jun/msg00003.html BugTraq ID: 35510 http://www.securityfocus.com/bid/35510 Bugtraq: 20091120 K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/507977/100/0/threaded Bugtraq: 20091120 SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/507979/100/0/threaded Bugtraq: 20091210 Camino 1.6.10 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/508423/100/0/threaded Bugtraq: 20091210 Flock 2.5.2 Remote Array Overrun (Arbitrary code execution) (Google Search) http://www.securityfocus.com/archive/1/508417/100/0/threaded http://www.mandriva.com/security/advisories?name=MDVSA-2009:294 http://www.mandriva.com/security/advisories?name=MDVSA-2009:330 http://secunia.com/secunia_research/2009-35/ https://lists.debian.org/debian-lts-announce/2018/11/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6528 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9541 http://www.redhat.com/support/errata/RHSA-2009-1601.html http://www.redhat.com/support/errata/RHSA-2010-0153.html http://www.redhat.com/support/errata/RHSA-2010-0154.html RedHat Security Advisories: RHSA-2014:0311 http://rhn.redhat.com/errata/RHSA-2014-0311.html RedHat Security Advisories: RHSA-2014:0312 http://rhn.redhat.com/errata/RHSA-2014-0312.html http://securitytracker.com/id?1022478 http://secunia.com/advisories/37431 http://secunia.com/advisories/37682 http://secunia.com/advisories/37683 http://secunia.com/advisories/38066 http://secunia.com/advisories/38977 http://secunia.com/advisories/39001 http://securityreason.com/achievement_securityalert/63 http://securityreason.com/achievement_securityalert/69 http://securityreason.com/achievement_securityalert/72 http://securityreason.com/achievement_securityalert/73 http://securityreason.com/achievement_securityalert/71 http://securityreason.com/achievement_securityalert/76 http://securityreason.com/achievement_securityalert/75 http://securityreason.com/achievement_securityalert/77 http://securityreason.com/achievement_securityalert/78 http://securityreason.com/achievement_securityalert/81 http://sunsolve.sun.com/search/document.do?assetkey=1-26-272909-1 SuSE Security Announcement: SUSE-SR:2009:018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-11/msg00004.html SuSE Security Announcement: SUSE-SR:2010:013 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-06/msg00001.html http://www.ubuntu.com/usn/USN-915-1 http://www.vupen.com/english/advisories/2009/3297 http://www.vupen.com/english/advisories/2009/3299 http://www.vupen.com/english/advisories/2009/3334 http://www.vupen.com/english/advisories/2010/0094 http://www.vupen.com/english/advisories/2010/0648 http://www.vupen.com/english/advisories/2010/0650
Copyright	Copyright (C) 2009 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.