FreeBSD Local Security Checks : FreeBSD Ports: linux-flashplugin

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57354

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Ports: linux-flashplugin

Resumen: The remote host is missing an update to the system; as announced in the referenced advisory.

Descripción: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory.

Vulnerability Insight:
The following package is affected: linux-flashplugin

CVE-2006-3311
** RESERVED **
This candidate has been reserved by an organization or individual that
will use it when announcing a new security problem. When the
candidate has been publicized, the details for this candidate will be
provided.

CVE-2006-3587
Unspecified vulnerability in Macromedia Flash Player 8.0.24.0 allows
remote attackers to execute arbitrary commands via a malformed .swf
file that results in 'multiple improper memory access' errors.

CVE-2006-3588
Unspecified vulnerability in Macromedia Flash Player 8.0.24.0 allows
remote attackers to cause a denial of service (browser crash) via a
malformed, compressed .swf file.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-3311
http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html
BugTraq ID: 19980
http://www.securityfocus.com/bid/19980
Bugtraq: 20060912 Computer Terrorism (UK) :: Incident Response Centre - Adobe/Macromedia Flash Player Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/445825/100/0/threaded
Cert/CC Advisory: TA06-275A
http://www.us-cert.gov/cas/techalerts/TA06-275A.html
Cert/CC Advisory: TA06-318A
http://www.us-cert.gov/cas/techalerts/TA06-318A.html
CERT/CC vulnerability note: VU#451380
http://www.kb.cert.org/vuls/id/451380
http://security.gentoo.org/glsa/glsa-200610-02.xml
http://www.computerterrorism.com/research/ct12-09-2006.htm
Microsoft Security Bulletin: MS06-069
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-069
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A394
http://www.redhat.com/support/errata/RHSA-2006-0674.html
http://securitytracker.com/id?1016829
http://secunia.com/advisories/21865
http://secunia.com/advisories/21901
http://secunia.com/advisories/22054
http://secunia.com/advisories/22187
http://secunia.com/advisories/22268
http://secunia.com/advisories/22882
http://securityreason.com/securityalert/1546
SuSE Security Announcement: SUSE-SA:2006:053 (Google Search)
http://www.novell.com/linux/security/advisories/2006_53_flashplayer.html
http://www.vupen.com/english/advisories/2006/3573
http://www.vupen.com/english/advisories/2006/3577
http://www.vupen.com/english/advisories/2006/3852
http://www.vupen.com/english/advisories/2006/4507
XForce ISS Database: flashplayer-swf-string-bo(28886)
https://exchange.xforce.ibmcloud.com/vulnerabilities/28886
Common Vulnerability Exposure (CVE) ID: CVE-2006-3587
BugTraq ID: 18894
http://www.securityfocus.com/bid/18894
CERT/CC vulnerability note: VU#474593
http://www.kb.cert.org/vuls/id/474593
http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-20.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1050
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A709
http://securitytracker.com/id?1016448
http://secunia.com/advisories/20971
http://www.vupen.com/english/advisories/2006/2702
XForce ISS Database: macromedia-swf-file-code-execution(27601)
https://exchange.xforce.ibmcloud.com/vulnerabilities/27601
Common Vulnerability Exposure (CVE) ID: CVE-2006-3588
http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-21.html
http://www.osvdb.org/28733
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A432
http://securitytracker.com/id?1016449
XForce ISS Database: macromedia-swf-dos(27602)
https://exchange.xforce.ibmcloud.com/vulnerabilities/27602
Common Vulnerability Exposure (CVE) ID: CVE-2006-4640
CERT/CC vulnerability note: VU#168372
http://www.kb.cert.org/vuls/id/168372
http://www.osvdb.org/28734
XForce ISS Database: flashplayer-allowscriptacces-security-bypass(28887)
https://exchange.xforce.ibmcloud.com/vulnerabilities/28887

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57354
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: linux-flashplugin
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: linux-flashplugin CVE-2006-3311 RESERVED This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided. CVE-2006-3587 Unspecified vulnerability in Macromedia Flash Player 8.0.24.0 allows remote attackers to execute arbitrary commands via a malformed .swf file that results in 'multiple improper memory access' errors. CVE-2006-3588 Unspecified vulnerability in Macromedia Flash Player 8.0.24.0 allows remote attackers to cause a denial of service (browser crash) via a malformed, compressed .swf file. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-3311 http://lists.apple.com/archives/security-announce/2006/Sep/msg00002.html BugTraq ID: 19980 http://www.securityfocus.com/bid/19980 Bugtraq: 20060912 Computer Terrorism (UK) :: Incident Response Centre - Adobe/Macromedia Flash Player Vulnerability (Google Search) http://www.securityfocus.com/archive/1/445825/100/0/threaded Cert/CC Advisory: TA06-275A http://www.us-cert.gov/cas/techalerts/TA06-275A.html Cert/CC Advisory: TA06-318A http://www.us-cert.gov/cas/techalerts/TA06-318A.html CERT/CC vulnerability note: VU#451380 http://www.kb.cert.org/vuls/id/451380 http://security.gentoo.org/glsa/glsa-200610-02.xml http://www.computerterrorism.com/research/ct12-09-2006.htm Microsoft Security Bulletin: MS06-069 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-069 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A394 http://www.redhat.com/support/errata/RHSA-2006-0674.html http://securitytracker.com/id?1016829 http://secunia.com/advisories/21865 http://secunia.com/advisories/21901 http://secunia.com/advisories/22054 http://secunia.com/advisories/22187 http://secunia.com/advisories/22268 http://secunia.com/advisories/22882 http://securityreason.com/securityalert/1546 SuSE Security Announcement: SUSE-SA:2006:053 (Google Search) http://www.novell.com/linux/security/advisories/2006_53_flashplayer.html http://www.vupen.com/english/advisories/2006/3573 http://www.vupen.com/english/advisories/2006/3577 http://www.vupen.com/english/advisories/2006/3852 http://www.vupen.com/english/advisories/2006/4507 XForce ISS Database: flashplayer-swf-string-bo(28886) https://exchange.xforce.ibmcloud.com/vulnerabilities/28886 Common Vulnerability Exposure (CVE) ID: CVE-2006-3587 BugTraq ID: 18894 http://www.securityfocus.com/bid/18894 CERT/CC vulnerability note: VU#474593 http://www.kb.cert.org/vuls/id/474593 http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-20.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1050 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A709 http://securitytracker.com/id?1016448 http://secunia.com/advisories/20971 http://www.vupen.com/english/advisories/2006/2702 XForce ISS Database: macromedia-swf-file-code-execution(27601) https://exchange.xforce.ibmcloud.com/vulnerabilities/27601 Common Vulnerability Exposure (CVE) ID: CVE-2006-3588 http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-21.html http://www.osvdb.org/28733 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A432 http://securitytracker.com/id?1016449 XForce ISS Database: macromedia-swf-dos(27602) https://exchange.xforce.ibmcloud.com/vulnerabilities/27602 Common Vulnerability Exposure (CVE) ID: CVE-2006-4640 CERT/CC vulnerability note: VU#168372 http://www.kb.cert.org/vuls/id/168372 http://www.osvdb.org/28734 XForce ISS Database: flashplayer-allowscriptacces-security-bypass(28887) https://exchange.xforce.ibmcloud.com/vulnerabilities/28887
Copyright	Copyright (C) 2008 E-Soft Inc.