Conectiva Local Security Checks : Conectiva Security Advisory CLA-2004:863

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.51358

Categoría: Conectiva Local Security Checks

Título: Conectiva Security Advisory CLA-2004:863

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory CLA-2004:863.

Wv[1] is a library which allows access to Microsoft Word files.

iDefense[2] discovered[3] a buffer overflow vulnerability[4] in the
wv library which could allow an attacker to execute arbitrary code
with the privileges of the user running the vulnerable application.

Solution:
The apt tool can be used to perform RPM package upgrades
by running 'apt-get update' followed by 'apt-get upgrade'

http://wvware.sourceforge.net/
http://www.idefense.com/
http://www.idefense.com/application/poi/display?id=115&type=vulnerabilities&flashstatus=true
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0645
http://www.securityspace.com/smysecure/catid.html?in=CLA-2004:863
http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002004

Risk factor : Critical

CVSS Score:
10.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0645
Conectiva Linux advisory: CLA-2004:863
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000863
Debian Security Information: DSA-579 (Google Search)
http://www.debian.org/security/2004/dsa-579
https://bugzilla.fedora.us/show_bug.cgi?id=1906
http://security.gentoo.org/glsa/glsa-200407-11.xml
http://www.idefense.com/application/poi/display?id=115&type=vulnerabilities
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:077
http://www.osvdb.org/7761
XForce ISS Database: wvware-wvhandledatetimepicture-bo(16660)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16660

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.51358
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLA-2004:863
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLA-2004:863. Wv[1] is a library which allows access to Microsoft Word files. iDefense[2] discovered[3] a buffer overflow vulnerability[4] in the wv library which could allow an attacker to execute arbitrary code with the privileges of the user running the vulnerable application. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://wvware.sourceforge.net/ http://www.idefense.com/ http://www.idefense.com/application/poi/display?id=115&type=vulnerabilities&flashstatus=true http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0645 http://www.securityspace.com/smysecure/catid.html?in=CLA-2004:863 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002004 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0645 Conectiva Linux advisory: CLA-2004:863 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000863 Debian Security Information: DSA-579 (Google Search) http://www.debian.org/security/2004/dsa-579 https://bugzilla.fedora.us/show_bug.cgi?id=1906 http://security.gentoo.org/glsa/glsa-200407-11.xml http://www.idefense.com/application/poi/display?id=115&type=vulnerabilities http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:077 http://www.osvdb.org/7761 XForce ISS Database: wvware-wvhandledatetimepicture-bo(16660) https://exchange.xforce.ibmcloud.com/vulnerabilities/16660
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com