Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200511-21 (Flash)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55917

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200511-21 (Flash)

Resumen: The remote host is missing updates announced in;advisory GLSA 200511-21.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200511-21.

Vulnerability Insight:
A vulnerability has been identified that allows arbitrary code execution on
a user's system via the handling of malicious SWF files.

Solution:
All Macromedia Flash Player users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-www/netscape-flash-7.0.61'

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-2628
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html
BugTraq ID: 15332
http://www.securityfocus.com/bid/15332
BugTraq ID: 17951
http://www.securityfocus.com/bid/17951
Bugtraq: 20051105 [EEYEB-20050627B] Macromedia Flash Player Improper Memory Access Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/415789/30/0/threaded
Cert/CC Advisory: TA06-129A
http://www.us-cert.gov/cas/techalerts/TA06-129A.html
Cert/CC Advisory: TA06-132A
http://www.us-cert.gov/cas/techalerts/TA06-132A.html
CERT/CC vulnerability note: VU#146284
http://www.kb.cert.org/vuls/id/146284
eEye Security Advisory: EEYEB-20050627B
http://www.gentoo.org/security/en/glsa/glsa-200511-21.xml
Microsoft Security Bulletin: MS06-020
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-020
http://www.osvdb.org/18825
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1557
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1987
http://www.redhat.com/support/errata/RHSA-2005-835.html
http://securitytracker.com/id?1015156
http://secunia.com/advisories/17430
http://secunia.com/advisories/17437/
http://secunia.com/advisories/17481
http://secunia.com/advisories/17626/
http://secunia.com/advisories/17738
http://secunia.com/advisories/20045
http://secunia.com/advisories/20077
SuSE Security Announcement: SUSE-SR:2005:027 (Google Search)
http://www.novell.com/linux/security/advisories/2005_27_sr.html
http://www.vupen.com/english/advisories/2005/2317
http://www.vupen.com/english/advisories/2006/1744
http://www.vupen.com/english/advisories/2006/1779
XForce ISS Database: flashplayer-swf-execute-code(22959)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22959

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55917
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200511-21 (Flash)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200511-21.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200511-21. Vulnerability Insight: A vulnerability has been identified that allows arbitrary code execution on a user's system via the handling of malicious SWF files. Solution: All Macromedia Flash Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-www/netscape-flash-7.0.61' CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2628 http://lists.apple.com/archives/security-announce/2006/May/msg00003.html BugTraq ID: 15332 http://www.securityfocus.com/bid/15332 BugTraq ID: 17951 http://www.securityfocus.com/bid/17951 Bugtraq: 20051105 [EEYEB-20050627B] Macromedia Flash Player Improper Memory Access Vulnerability (Google Search) http://www.securityfocus.com/archive/1/415789/30/0/threaded Cert/CC Advisory: TA06-129A http://www.us-cert.gov/cas/techalerts/TA06-129A.html Cert/CC Advisory: TA06-132A http://www.us-cert.gov/cas/techalerts/TA06-132A.html CERT/CC vulnerability note: VU#146284 http://www.kb.cert.org/vuls/id/146284 eEye Security Advisory: EEYEB-20050627B http://www.gentoo.org/security/en/glsa/glsa-200511-21.xml Microsoft Security Bulletin: MS06-020 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-020 http://www.osvdb.org/18825 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1557 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1987 http://www.redhat.com/support/errata/RHSA-2005-835.html http://securitytracker.com/id?1015156 http://secunia.com/advisories/17430 http://secunia.com/advisories/17437/ http://secunia.com/advisories/17481 http://secunia.com/advisories/17626/ http://secunia.com/advisories/17738 http://secunia.com/advisories/20045 http://secunia.com/advisories/20077 SuSE Security Announcement: SUSE-SR:2005:027 (Google Search) http://www.novell.com/linux/security/advisories/2005_27_sr.html http://www.vupen.com/english/advisories/2005/2317 http://www.vupen.com/english/advisories/2006/1744 http://www.vupen.com/english/advisories/2006/1779 XForce ISS Database: flashplayer-swf-execute-code(22959) https://exchange.xforce.ibmcloud.com/vulnerabilities/22959
Copyright	Copyright (C) 2008 E-Soft Inc.