ID de Prueba:	1.3.6.1.4.1.25623.1.0.57134
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2006:127 (gimp)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to gimp announced via advisory MDKSA-2006:127. A buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp 2.2.x allows user-complicit attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property. Updated packages have been patched to correct this issue. Affected: 2006.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2006:127 Risk factor : High CVSS Score: 5.1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-3404 BugTraq ID: 18877 http://www.securityfocus.com/bid/18877 Bugtraq: 20060724 ERRATA: [ GLSA 200607-08 ] GIMP: Buffer overflow (Google Search) http://www.securityfocus.com/archive/1/441012/100/0/threaded Bugtraq: 20060724 Re: [ GLSA 200607-08 ] GIMP: Buffer overflow (Google Search) http://www.securityfocus.com/archive/1/440987/100/0/threaded Bugtraq: 20060724 rPSA-2006-0135-1 gimp (Google Search) http://www.securityfocus.com/archive/1/441030/100/0/threaded Debian Security Information: DSA-1116 (Google Search) http://www.debian.org/security/2006/dsa-1116 http://security.gentoo.org/glsa/glsa-200607-08.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:127 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=377049 http://www.osvdb.org/27037 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11259 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5908 http://www.redhat.com/support/errata/RHSA-2006-0598.html http://securitytracker.com/id?1016527 http://secunia.com/advisories/20976 http://secunia.com/advisories/20979 http://secunia.com/advisories/21069 http://secunia.com/advisories/21104 http://secunia.com/advisories/21170 http://secunia.com/advisories/21182 http://secunia.com/advisories/21198 http://secunia.com/advisories/21459 http://secunia.com/advisories/23044 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102720-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-200070-1 SuSE Security Announcement: SUSE-SR:2006:019 (Google Search) http://www.novell.com/linux/security/advisories/2006_19_sr.html http://www.ubuntu.com/usn/usn-312-1 http://www.vupen.com/english/advisories/2006/2703 http://www.vupen.com/english/advisories/2006/4634 XForce ISS Database: gimp-xcfloadvector-bo(27687) https://exchange.xforce.ibmcloud.com/vulnerabilities/27687
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.