Red Hat Local Security Checks : RedHat Security Advisory RHSA-2004:440

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.51166

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2004:440

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2004:440.

LHA is an archiving and compression utility for LHarc format archives.

Lukasz Wojtow discovered a stack-based buffer overflow in all versions
of lha up to and including version 1.14. A carefully created archive could
allow an attacker to execute arbitrary code when a victim extracts or tests
the archive. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2004-0769 to this issue.

Buffer overflows were discovered in the command line processing of all
versions of lha up to and including version 1.14. If a malicious user can
trick a victim into passing a specially crafted command line to the lha
command, it is possible that arbitrary code could be executed. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
names CVE-2004-0771 and CVE-2004-0694 to these issues.

Thomas Biege discovered a shell meta character command execution
vulnerability in all versions of lha up to and including 1.14. An attacker
could create a directory with shell meta characters in its name which could
lead to arbitrary command execution. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CVE-2004-0745 to
this issue.

Users of lha should update to this updated package which contains
backported patches and is not vulnerable to these issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2004-440.html
http://marc.theaimsgroup.com/?l=bugtraq&m=108668791510153
http://lw.ftw.zamosc.pl/lha-exploit.txt

Risk factor : Critical

CVSS Score:
10.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0771
BugTraq ID: 10354
http://www.securityfocus.com/bid/10354
Bugtraq: 20040515 lha buffer overflow(s) again (Google Search)
http://www.securityfocus.com/archive/1/363418
Bugtraq: 20040606 Re: [SECURITY] [DSA 515-1] New lha packages fix several (Google Search)
http://marc.info/?l=bugtraq&m=108668791510153
https://bugzilla.fedora.us/show_bug.cgi?id=1833
http://www.gentoo.org/security/en/glsa/glsa-200409-13.xml
http://bugs.gentoo.org/show_bug.cgi?id=51285
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9595
http://www.redhat.com/support/errata/RHSA-2004-323.html
http://www.redhat.com/support/errata/RHSA-2004-440.html
XForce ISS Database: lha-extractone-bo(16196)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16196
Common Vulnerability Exposure (CVE) ID: CVE-2004-0769
Bugtraq: 20040616 Re: [SECURITY] [DSA 515-1] New lha packages fix several vulnerabilities; Re: (Google Search)
http://marc.info/?l=bugtraq&m=108745217504379&w=2
http://lw.ftw.zamosc.pl/lha-exploit.txt
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11047
XForce ISS Database: lha-long-pathname-bo(16917)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16917
Common Vulnerability Exposure (CVE) ID: CVE-2004-0694
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9981
Common Vulnerability Exposure (CVE) ID: CVE-2004-0745
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11088
XForce ISS Database: lha-metacharacter-command-execution(17198)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17198

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51166
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2004:440
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2004:440. LHA is an archiving and compression utility for LHarc format archives. Lukasz Wojtow discovered a stack-based buffer overflow in all versions of lha up to and including version 1.14. A carefully created archive could allow an attacker to execute arbitrary code when a victim extracts or tests the archive. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0769 to this issue. Buffer overflows were discovered in the command line processing of all versions of lha up to and including version 1.14. If a malicious user can trick a victim into passing a specially crafted command line to the lha command, it is possible that arbitrary code could be executed. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2004-0771 and CVE-2004-0694 to these issues. Thomas Biege discovered a shell meta character command execution vulnerability in all versions of lha up to and including 1.14. An attacker could create a directory with shell meta characters in its name which could lead to arbitrary command execution. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0745 to this issue. Users of lha should update to this updated package which contains backported patches and is not vulnerable to these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2004-440.html http://marc.theaimsgroup.com/?l=bugtraq&m=108668791510153 http://lw.ftw.zamosc.pl/lha-exploit.txt Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0771 BugTraq ID: 10354 http://www.securityfocus.com/bid/10354 Bugtraq: 20040515 lha buffer overflow(s) again (Google Search) http://www.securityfocus.com/archive/1/363418 Bugtraq: 20040606 Re: [SECURITY] [DSA 515-1] New lha packages fix several (Google Search) http://marc.info/?l=bugtraq&m=108668791510153 https://bugzilla.fedora.us/show_bug.cgi?id=1833 http://www.gentoo.org/security/en/glsa/glsa-200409-13.xml http://bugs.gentoo.org/show_bug.cgi?id=51285 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9595 http://www.redhat.com/support/errata/RHSA-2004-323.html http://www.redhat.com/support/errata/RHSA-2004-440.html XForce ISS Database: lha-extractone-bo(16196) https://exchange.xforce.ibmcloud.com/vulnerabilities/16196 Common Vulnerability Exposure (CVE) ID: CVE-2004-0769 Bugtraq: 20040616 Re: [SECURITY] [DSA 515-1] New lha packages fix several vulnerabilities; Re: (Google Search) http://marc.info/?l=bugtraq&m=108745217504379&w=2 http://lw.ftw.zamosc.pl/lha-exploit.txt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11047 XForce ISS Database: lha-long-pathname-bo(16917) https://exchange.xforce.ibmcloud.com/vulnerabilities/16917 Common Vulnerability Exposure (CVE) ID: CVE-2004-0694 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9981 Common Vulnerability Exposure (CVE) ID: CVE-2004-0745 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11088 XForce ISS Database: lha-metacharacter-command-execution(17198) https://exchange.xforce.ibmcloud.com/vulnerabilities/17198
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com