Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:473

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.52767

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2005:473

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2005:473.

LessTif provides libraries which implement the Motif industry standard
graphical user interface.

An integer overflow flaw was found in libXpm
a vulnerable version of this
library is found within LessTif. An attacker could create a malicious XPM
file that would execute arbitrary code if opened by a victim using an
application linked to LessTif. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CVE-2005-0605 to this issue.

Users of LessTif should upgrade to these updated packages, which contain a
backported patch to correct this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-473.html

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: BugTraq ID: 12714
Common Vulnerability Exposure (CVE) ID: CVE-2005-0605
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
http://www.securityfocus.com/bid/12714
Debian Security Information: DSA-723 (Google Search)
http://www.debian.org/security/2005/dsa-723
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html
http://security.gentoo.org/glsa/glsa-200503-08.xml
http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411
http://www.redhat.com/support/errata/RHSA-2005-044.html
http://www.redhat.com/support/errata/RHSA-2005-198.html
http://www.redhat.com/support/errata/RHSA-2005-331.html
http://www.redhat.com/support/errata/RHSA-2005-412.html
http://www.redhat.com/support/errata/RHSA-2005-473.html
http://www.redhat.com/support/errata/RHSA-2008-0261.html
SCO Security Bulletin: SCOSA-2005.57
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt
SCO Security Bulletin: SCOSA-2006.5
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt
http://securitytracker.com/id?1013339
http://secunia.com/advisories/14460
http://secunia.com/advisories/18049
http://secunia.com/advisories/18316
http://secunia.com/advisories/19624
SGI Security Advisory: 20060403-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U
https://usn.ubuntu.com/92-1/
https://usn.ubuntu.com/97-1/

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.52767
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:473
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:473. LessTif provides libraries which implement the Motif industry standard graphical user interface. An integer overflow flaw was found in libXpm a vulnerable version of this library is found within LessTif. An attacker could create a malicious XPM file that would execute arbitrary code if opened by a victim using an application linked to LessTif. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0605 to this issue. Users of LessTif should upgrade to these updated packages, which contain a backported patch to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-473.html Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 12714 Common Vulnerability Exposure (CVE) ID: CVE-2005-0605 http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html http://www.securityfocus.com/bid/12714 Debian Security Information: DSA-723 (Google Search) http://www.debian.org/security/2005/dsa-723 http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html http://security.gentoo.org/glsa/glsa-200503-08.xml http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411 http://www.redhat.com/support/errata/RHSA-2005-044.html http://www.redhat.com/support/errata/RHSA-2005-198.html http://www.redhat.com/support/errata/RHSA-2005-331.html http://www.redhat.com/support/errata/RHSA-2005-412.html http://www.redhat.com/support/errata/RHSA-2005-473.html http://www.redhat.com/support/errata/RHSA-2008-0261.html SCO Security Bulletin: SCOSA-2005.57 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt SCO Security Bulletin: SCOSA-2006.5 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt http://securitytracker.com/id?1013339 http://secunia.com/advisories/14460 http://secunia.com/advisories/18049 http://secunia.com/advisories/18316 http://secunia.com/advisories/19624 SGI Security Advisory: 20060403-01-U ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U https://usn.ubuntu.com/92-1/ https://usn.ubuntu.com/97-1/
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com