FreeBSD Local Security Checks : FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.52547

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim

Resumen: The remote host is missing an update to the system; as announced in the referenced advisory.

Descripción: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following packages are affected:

gaim
ja-gaim
ko-gaim
ru-gaim

CVE-2005-0208
The HTML parsing functions in Gaim before 1.1.4 allow remote attackers
to cause a denial of service (application crash) via malformed HTML
that causes 'an invalid memory access, ' a different vulnerability than
CVE-2005-0473.

CVE-2005-0473
The HTML parsing functions in Gaim before 1.1.3 allow remote attackers
to cause a denial of service (application crash) via malformed HTML
that causes 'an invalid memory access, ' a different vulnerability than
CVE-2005-0208.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-0208
BugTraq ID: 12660
http://www.securityfocus.com/bid/12660
Bugtraq: 20050225 [USN-85-1] Gaim vulnerabilities (Google Search)
http://marc.info/?l=bugtraq&m=110935655500670&w=2
CERT/CC vulnerability note: VU#795812
http://www.kb.cert.org/vuls/id/795812
Conectiva Linux advisory: CLA-2005:933
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000933
http://www.securityfocus.com/archive/1/426078/100/0/threaded
http://www.gentoo.org/security/en/glsa/glsa-200503-03.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:049
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10477
http://www.redhat.com/support/errata/RHSA-2005-215.html
http://secunia.com/advisories/14386
SuSE Security Announcement: SUSE-SA:2005:036 (Google Search)
http://www.novell.com/linux/security/advisories/2005_36_sudo.html
Common Vulnerability Exposure (CVE) ID: CVE-2005-0473
12589
http://www.securityfocus.com/bid/12589
14322
http://secunia.com/advisories/14322
20050225 [USN-85-1] Gaim vulnerabilities
CLA-2005:933
FLSA:158543
GLSA-200503-03
MDKSA-2005:049
RHSA-2005:215
SUSE-SA:2005:036
VU#523888
http://www.kb.cert.org/vuls/id/523888
gaim-html-dos(19381)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19381
http://gaim.sourceforge.net/security/index.php?id=11
oval:org.mitre.oval:def:10212
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10212

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.52547
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: gaim ja-gaim ko-gaim ru-gaim CVE-2005-0208 The HTML parsing functions in Gaim before 1.1.4 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes 'an invalid memory access, ' a different vulnerability than CVE-2005-0473. CVE-2005-0473 The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes 'an invalid memory access, ' a different vulnerability than CVE-2005-0208. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0208 BugTraq ID: 12660 http://www.securityfocus.com/bid/12660 Bugtraq: 20050225 [USN-85-1] Gaim vulnerabilities (Google Search) http://marc.info/?l=bugtraq&m=110935655500670&w=2 CERT/CC vulnerability note: VU#795812 http://www.kb.cert.org/vuls/id/795812 Conectiva Linux advisory: CLA-2005:933 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000933 http://www.securityfocus.com/archive/1/426078/100/0/threaded http://www.gentoo.org/security/en/glsa/glsa-200503-03.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:049 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10477 http://www.redhat.com/support/errata/RHSA-2005-215.html http://secunia.com/advisories/14386 SuSE Security Announcement: SUSE-SA:2005:036 (Google Search) http://www.novell.com/linux/security/advisories/2005_36_sudo.html Common Vulnerability Exposure (CVE) ID: CVE-2005-0473 12589 http://www.securityfocus.com/bid/12589 14322 http://secunia.com/advisories/14322 20050225 [USN-85-1] Gaim vulnerabilities CLA-2005:933 FLSA:158543 GLSA-200503-03 MDKSA-2005:049 RHSA-2005:215 SUSE-SA:2005:036 VU#523888 http://www.kb.cert.org/vuls/id/523888 gaim-html-dos(19381) https://exchange.xforce.ibmcloud.com/vulnerabilities/19381 http://gaim.sourceforge.net/security/index.php?id=11 oval:org.mitre.oval:def:10212 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10212
Copyright	Copyright (C) 2008 E-Soft Inc.