Red Hat Local Security Checks : RedHat Security Advisory RHSA-2006:0272

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56481

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2006:0272

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2006:0272.

OpenMotif provides libraries which implement the Motif industry standard
graphical user interface.

A number of buffer overflow flaws were discovered in OpenMotif's libUil
library. It is possible for an attacker to execute arbitrary code as a
victim who has been tricked into executing a program linked against
OpenMotif, which then loads a malicious User Interface Language (UIL) file.
(CVE-2005-3964)

Users of OpenMotif are advised to upgrade to these erratum packages, which
contain a backported security patch to correct this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2006-0272.html
http://www.redhat.com/security/updates/classification/#moderate

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: BugTraq ID: 15686
BugTraq ID: 15684
Common Vulnerability Exposure (CVE) ID: CVE-2005-3964
1015303
http://securitytracker.com/id?1015303
15684
http://www.securityfocus.com/bid/15684
15686
http://www.securityfocus.com/bid/15686
20051201 [xfocus-SD-051202]openMotif-libUil-Multiple_vulnerability
http://marc.info/?l=full-disclosure&m=113349242925897&w=2
20051202 [xfocus-SD-051202]openMotif libUil Multiple vulnerability
http://www.securityfocus.com/archive/1/418459/100/0/threaded
ADV-2005-2709
http://www.vupen.com/english/advisories/2005/2709
RHSA-2006:0272
http://www.redhat.com/support/errata/RHSA-2006-0272.html
RHSA-2008:0261
http://www.redhat.com/support/errata/RHSA-2008-0261.html
openmotif-diagissuediagnostic-bo(23388)
https://exchange.xforce.ibmcloud.com/vulnerabilities/23388
openmotif-opensourcefile-bo(23389)
https://exchange.xforce.ibmcloud.com/vulnerabilities/23389
oval:org.mitre.oval:def:9393
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9393

Copyright Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56481
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2006:0272
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2006:0272. OpenMotif provides libraries which implement the Motif industry standard graphical user interface. A number of buffer overflow flaws were discovered in OpenMotif's libUil library. It is possible for an attacker to execute arbitrary code as a victim who has been tricked into executing a program linked against OpenMotif, which then loads a malicious User Interface Language (UIL) file. (CVE-2005-3964) Users of OpenMotif are advised to upgrade to these erratum packages, which contain a backported security patch to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2006-0272.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 15686 BugTraq ID: 15684 Common Vulnerability Exposure (CVE) ID: CVE-2005-3964 1015303 http://securitytracker.com/id?1015303 15684 http://www.securityfocus.com/bid/15684 15686 http://www.securityfocus.com/bid/15686 20051201 [xfocus-SD-051202]openMotif-libUil-Multiple_vulnerability http://marc.info/?l=full-disclosure&m=113349242925897&w=2 20051202 [xfocus-SD-051202]openMotif libUil Multiple vulnerability http://www.securityfocus.com/archive/1/418459/100/0/threaded ADV-2005-2709 http://www.vupen.com/english/advisories/2005/2709 RHSA-2006:0272 http://www.redhat.com/support/errata/RHSA-2006-0272.html RHSA-2008:0261 http://www.redhat.com/support/errata/RHSA-2008-0261.html openmotif-diagissuediagnostic-bo(23388) https://exchange.xforce.ibmcloud.com/vulnerabilities/23388 openmotif-opensourcefile-bo(23389) https://exchange.xforce.ibmcloud.com/vulnerabilities/23389 oval:org.mitre.oval:def:9393 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9393
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com