ID de Prueba:	1.3.6.1.4.1.25623.1.0.51068
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2004:612
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2004:612. XFree86 is an open source implementation of the X Window System. It provides the basic low level functionality which full fledged graphical user interfaces (GUIs) such as GNOME and KDE are designed upon. Several integer overflow flaws in the X.Org libXpm library used to decode XPM (X PixMap) images have been found and addressed. An attacker could create a carefully crafted XPM file which would cause an application to crash or potentially execute arbitrary code if opened by a victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0914 to this issue. Users are advised to upgrade to these erratum packages, which contain backported security patches as well as other bug fixes. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2004-612.html Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	BugTraq ID: 11694 Common Vulnerability Exposure (CVE) ID: CVE-2004-0914 http://www.securityfocus.com/bid/11694 Debian Security Information: DSA-607 (Google Search) http://www.debian.org/security/2004/dsa-607 http://www.linuxsecurity.com/content/view/106877/102/ http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml HPdes Security Advisory: HPSBTU01228 http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228 http://www.mandriva.com/security/advisories?name=MDKSA-2004:137 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943 RedHat Security Advisories: RHSA-2004:537 http://rhn.redhat.com/errata/RHSA-2004-537.html http://www.redhat.com/support/errata/RHSA-2004-610.html http://www.redhat.com/support/errata/RHSA-2005-004.html http://secunia.com/advisories/13224/ http://www.ubuntu.com/usn/usn-83-1 http://www.ubuntu.com/usn/usn-83-2 XForce ISS Database: libxpm-command-execution(18145) https://exchange.xforce.ibmcloud.com/vulnerabilities/18145 XForce ISS Database: libxpm-directory-traversal(18146) https://exchange.xforce.ibmcloud.com/vulnerabilities/18146 XForce ISS Database: libxpm-dos(18147) https://exchange.xforce.ibmcloud.com/vulnerabilities/18147 XForce ISS Database: libxpm-image-bo(18142) https://exchange.xforce.ibmcloud.com/vulnerabilities/18142 XForce ISS Database: libxpm-improper-memory-access(18144) https://exchange.xforce.ibmcloud.com/vulnerabilities/18144
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.