Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200507-25 (clamav)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55001

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200507-25 (clamav)

Resumen: The remote host is missing updates announced in;advisory GLSA 200507-25.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200507-25.

Vulnerability Insight:
Clam AntiVirus is vulnerable to integer overflows when handling several
file formats, potentially resulting in the execution of arbitrary code.

Solution:
All Clam AntiVirus users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=app-antivirus/clamav-0.86.2'

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-2450
BugTraq ID: 14359
http://www.securityfocus.com/bid/14359
Bugtraq: 20050725 ClamAV Multiple Rem0te Buffer Overflows (Google Search)
http://marc.info/?l=bugtraq&m=112230864412932&w=2
Conectiva Linux advisory: CLSA-2005:987
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987
http://security.gentoo.org/glsa/glsa-200507-25.xml
http://www.osvdb.org/18257
http://www.osvdb.org/18258
http://www.osvdb.org/18259
http://secunia.com/advisories/16180
http://secunia.com/advisories/16229
http://secunia.com/advisories/16250
http://secunia.com/advisories/16296
http://secunia.com/advisories/16458
SuSE Security Announcement: SUSE-SR:2005:018 (Google Search)
http://www.novell.com/linux/security/advisories/2005_18_sr.html
XForce ISS Database: clam-antivirus-file-format-gain-access(21555)
https://exchange.xforce.ibmcloud.com/vulnerabilities/21555

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55001
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200507-25 (clamav)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200507-25.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200507-25. Vulnerability Insight: Clam AntiVirus is vulnerable to integer overflows when handling several file formats, potentially resulting in the execution of arbitrary code. Solution: All Clam AntiVirus users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-antivirus/clamav-0.86.2' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2450 BugTraq ID: 14359 http://www.securityfocus.com/bid/14359 Bugtraq: 20050725 ClamAV Multiple Rem0te Buffer Overflows (Google Search) http://marc.info/?l=bugtraq&m=112230864412932&w=2 Conectiva Linux advisory: CLSA-2005:987 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000987 http://security.gentoo.org/glsa/glsa-200507-25.xml http://www.osvdb.org/18257 http://www.osvdb.org/18258 http://www.osvdb.org/18259 http://secunia.com/advisories/16180 http://secunia.com/advisories/16229 http://secunia.com/advisories/16250 http://secunia.com/advisories/16296 http://secunia.com/advisories/16458 SuSE Security Announcement: SUSE-SR:2005:018 (Google Search) http://www.novell.com/linux/security/advisories/2005_18_sr.html XForce ISS Database: clam-antivirus-file-format-gain-access(21555) https://exchange.xforce.ibmcloud.com/vulnerabilities/21555
Copyright	Copyright (C) 2008 E-Soft Inc.