ID de Prueba:	1.3.6.1.4.1.25623.1.0.56176
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLSA-2006:1060
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLSA-2006:1060. This announcement fixes an integer overflow vulnerability in the Binary File Descriptor (BFD) library that allows user-complicit attackers to execute arbitrary code via a specially crafted object file by specifying a large number of section headers, leading to a heap-based buffer overflow. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=001060 http://sources.redhat.com/binutils Risk factor : Medium CVSS Score: 4.6
Referencia Cruzada:	BugTraq ID: 13697 Common Vulnerability Exposure (CVE) ID: CVE-2005-1704 http://www.securityfocus.com/bid/13697 Bugtraq: 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates (Google Search) http://www.securityfocus.com/archive/1/464745/100/0/threaded Conectiva Linux advisory: CLA-2006:1060 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=001060 http://security.gentoo.org/glsa/glsa-200505-15.xml http://www.gentoo.org/security/en/glsa/glsa-200506-01.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:095 http://www.mandriva.com/security/advisories?name=MDKSA-2005:215 http://www.osvdb.org/16757 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9071 http://www.redhat.com/support/errata/RHSA-2005-659.html http://www.redhat.com/support/errata/RHSA-2005-673.html http://www.redhat.com/support/errata/RHSA-2005-709.html http://www.redhat.com/support/errata/RHSA-2005-763.html http://www.redhat.com/support/errata/RHSA-2005-801.html http://www.redhat.com/support/errata/RHSA-2006-0354.html http://www.redhat.com/support/errata/RHSA-2006-0368.html http://securitytracker.com/id?1016544 http://secunia.com/advisories/15527 http://secunia.com/advisories/17001 http://secunia.com/advisories/17072 http://secunia.com/advisories/17135 http://secunia.com/advisories/17257 http://secunia.com/advisories/17356 http://secunia.com/advisories/17718 http://secunia.com/advisories/18506 http://secunia.com/advisories/21122 http://secunia.com/advisories/21262 http://secunia.com/advisories/21717 http://secunia.com/advisories/24788 SGI Security Advisory: 20060703-01-P ftp://patches.sgi.com/support/free/security/advisories/20060703-01-U.asc http://www.trustix.org/errata/2005/0025/ https://usn.ubuntu.com/136-1/ http://www.vupen.com/english/advisories/2007/1267
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.