Red Hat Local Security Checks : RedHat Security Advisory RHSA-2006:0257

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56430

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2006:0257

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2006:0257.

RealPlayer is a media player that provides media playback locally and via
streaming.

A buffer overflow bug was discovered in the way RealPlayer processes Flash
Media (.swf) files. It is possible for a malformed Flash Media file to
execute arbitrary code as the user running RealPlayer. The Common
Vulnerabilities and Exposures project assigned the name CVE-2006-0323 to
this issue.

All users of RealPlayer are advised to upgrade to this updated package,
which contains RealPlayer version 10.0.7 and is not vulnerable to this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2006-0257.html

Risk factor : Critical

CVSS Score:
9.3

Referencia Cruzada: BugTraq ID: 17202
Common Vulnerability Exposure (CVE) ID: CVE-2006-0323
http://www.securityfocus.com/bid/17202
Bugtraq: 20060411 Realplayer .SWF Multiple Remote Memory Corruption Vulnerabilities (Google Search)
http://www.securityfocus.com/archive/1/430621/100/0/threaded
CERT/CC vulnerability note: VU#231028
http://www.kb.cert.org/vuls/id/231028
http://www.gentoo.org/security/en/glsa/glsa-200603-24.xml
http://www.redhat.com/support/errata/RHSA-2006-0257.html
http://securitytracker.com/id?1015806
http://secunia.com/advisories/19358
http://secunia.com/advisories/19362
http://secunia.com/advisories/19365
http://secunia.com/advisories/19390
http://securityreason.com/securityalert/690
SuSE Security Announcement: SUSE-SA:2006:018 (Google Search)
http://www.novell.com/linux/security/advisories/2006_18_realplayer.html
http://www.vupen.com/english/advisories/2006/1057
XForce ISS Database: realnetworks-swf-bo(25408)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25408

Copyright Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56430
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2006:0257
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2006:0257. RealPlayer is a media player that provides media playback locally and via streaming. A buffer overflow bug was discovered in the way RealPlayer processes Flash Media (.swf) files. It is possible for a malformed Flash Media file to execute arbitrary code as the user running RealPlayer. The Common Vulnerabilities and Exposures project assigned the name CVE-2006-0323 to this issue. All users of RealPlayer are advised to upgrade to this updated package, which contains RealPlayer version 10.0.7 and is not vulnerable to this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2006-0257.html Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	BugTraq ID: 17202 Common Vulnerability Exposure (CVE) ID: CVE-2006-0323 http://www.securityfocus.com/bid/17202 Bugtraq: 20060411 Realplayer .SWF Multiple Remote Memory Corruption Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/430621/100/0/threaded CERT/CC vulnerability note: VU#231028 http://www.kb.cert.org/vuls/id/231028 http://www.gentoo.org/security/en/glsa/glsa-200603-24.xml http://www.redhat.com/support/errata/RHSA-2006-0257.html http://securitytracker.com/id?1015806 http://secunia.com/advisories/19358 http://secunia.com/advisories/19362 http://secunia.com/advisories/19365 http://secunia.com/advisories/19390 http://securityreason.com/securityalert/690 SuSE Security Announcement: SUSE-SA:2006:018 (Google Search) http://www.novell.com/linux/security/advisories/2006_18_realplayer.html http://www.vupen.com/english/advisories/2006/1057 XForce ISS Database: realnetworks-swf-bo(25408) https://exchange.xforce.ibmcloud.com/vulnerabilities/25408
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com