Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200603-20 (Flash)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56548

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200603-20 (Flash)

Resumen: The remote host is missing updates announced in;advisory GLSA 200603-20.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200603-20.

Vulnerability Insight:
Multiple vulnerabilities have been identified that allows arbitrary code
execution on a user's system via the handling of malicious SWF files.

Solution:
All Macromedia Flash Player users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-www/netscape-flash-7.0.63'

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-0024
http://lists.apple.com/archives/security-announce/2006/May/msg00003.html
http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html
BugTraq ID: 17106
http://www.securityfocus.com/bid/17106
BugTraq ID: 17951
http://www.securityfocus.com/bid/17951
Cert/CC Advisory: TA06-075A
http://www.us-cert.gov/cas/techalerts/TA06-075A.html
Cert/CC Advisory: TA06-129A
http://www.us-cert.gov/cas/techalerts/TA06-129A.html
Cert/CC Advisory: TA06-132A
http://www.us-cert.gov/cas/techalerts/TA06-132A.html
Cert/CC Advisory: TA07-352A
http://www.us-cert.gov/cas/techalerts/TA07-352A.html
CERT/CC vulnerability note: VU#945060
http://www.kb.cert.org/vuls/id/945060
http://www.gentoo.org/security/en/glsa/glsa-200603-20.xml
Microsoft Security Bulletin: MS06-020
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-020
http://www.osvdb.org/23908
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1894
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1922
http://www.redhat.com/support/errata/RHSA-2006-0268.html
http://securitytracker.com/id?1015770
http://secunia.com/advisories/19198
http://secunia.com/advisories/19218
http://secunia.com/advisories/19259
http://secunia.com/advisories/19328
http://secunia.com/advisories/20045
http://secunia.com/advisories/20077
http://secunia.com/advisories/28136
SuSE Security Announcement: SUSE-SA:2006:015 (Google Search)
http://www.novell.com/linux/security/advisories/2006_15_flashplayer.html
http://www.vupen.com/english/advisories/2006/0952
http://www.vupen.com/english/advisories/2006/1262
http://www.vupen.com/english/advisories/2006/1744
http://www.vupen.com/english/advisories/2006/1779
http://www.vupen.com/english/advisories/2007/4238
XForce ISS Database: macromedia-swf-code-execution(25005)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25005

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56548
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200603-20 (Flash)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200603-20.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200603-20. Vulnerability Insight: Multiple vulnerabilities have been identified that allows arbitrary code execution on a user's system via the handling of malicious SWF files. Solution: All Macromedia Flash Player users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-www/netscape-flash-7.0.63' CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0024 http://lists.apple.com/archives/security-announce/2006/May/msg00003.html http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html BugTraq ID: 17106 http://www.securityfocus.com/bid/17106 BugTraq ID: 17951 http://www.securityfocus.com/bid/17951 Cert/CC Advisory: TA06-075A http://www.us-cert.gov/cas/techalerts/TA06-075A.html Cert/CC Advisory: TA06-129A http://www.us-cert.gov/cas/techalerts/TA06-129A.html Cert/CC Advisory: TA06-132A http://www.us-cert.gov/cas/techalerts/TA06-132A.html Cert/CC Advisory: TA07-352A http://www.us-cert.gov/cas/techalerts/TA07-352A.html CERT/CC vulnerability note: VU#945060 http://www.kb.cert.org/vuls/id/945060 http://www.gentoo.org/security/en/glsa/glsa-200603-20.xml Microsoft Security Bulletin: MS06-020 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-020 http://www.osvdb.org/23908 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1894 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1922 http://www.redhat.com/support/errata/RHSA-2006-0268.html http://securitytracker.com/id?1015770 http://secunia.com/advisories/19198 http://secunia.com/advisories/19218 http://secunia.com/advisories/19259 http://secunia.com/advisories/19328 http://secunia.com/advisories/20045 http://secunia.com/advisories/20077 http://secunia.com/advisories/28136 SuSE Security Announcement: SUSE-SA:2006:015 (Google Search) http://www.novell.com/linux/security/advisories/2006_15_flashplayer.html http://www.vupen.com/english/advisories/2006/0952 http://www.vupen.com/english/advisories/2006/1262 http://www.vupen.com/english/advisories/2006/1744 http://www.vupen.com/english/advisories/2006/1779 http://www.vupen.com/english/advisories/2007/4238 XForce ISS Database: macromedia-swf-code-execution(25005) https://exchange.xforce.ibmcloud.com/vulnerabilities/25005
Copyright	Copyright (C) 2008 E-Soft Inc.