English | Deutsch | Español | Português
 ID de Usuario:
 Contraseña:
Nuevo usuario
 Acerca de:   Dedicada | Avanzada | Estándar | Periódica | Sin Riesgo | Escritorio | Básica | Individual | Sello | FAQ
  Resumen de Precio/Funciones | Ordenar  | Nuevas Vulnerabilidades | Confidencialidad | Búsqueda de Vulnerabilidad
 Búsqueda de    
Vulnerabilidad   
    Buscar 74154 Descripciones CVE y
39337 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.57452
Categoría:Mandrake Local Security Checks
Título:Mandrake Security Advisory MDKSA-2006:173 (ffmpeg)
Resumen:Mandrake Security Advisory MDKSA-2006:173 (ffmpeg)
Descripción:
The remote host is missing an update to ffmpeg
announced via advisory MDKSA-2006:173.

Multiple buffer overflows in libavcodec in ffmpeg before
0.4.9_p20060530 allow remote attackers to cause a denial of service or
possibly execute arbitrary code via multiple unspecified vectors in (1)
dtsdec.c, (2) vorbis.c, (3) rm.c, (4)sierravmd.c, (5) smacker.c, (6)
tta.c, (7) 4xm.c, (8) alac.c, (9) cook.c, (10)shorten.c, (11)
smacker.c, (12) snow.c, and (13) tta.c. NOTE: it is likely that this is
a different vulnerability than CVE-2005-4048 and CVE-2006-2802.

Updated packages have been patched to correct this issue.

Affected: 2006.0, Corporate 3.0, Corporate 4.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2006:173

Risk factor : High
Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-4048
http://article.gmane.org/gmane.comp.video.ffmpeg.devel/26558
Debian Security Information: DSA-992 (Google Search)
http://www.us.debian.org/security/2006/dsa-992
Debian Security Information: DSA-1004 (Google Search)
http://www.debian.org/security/2006/dsa-1004
Debian Security Information: DSA-1005 (Google Search)
http://www.debian.org/security/2006/dsa-1005
http://www.gentoo.org/security/en/glsa/glsa-200602-01.xml
http://www.gentoo.org/security/en/glsa/glsa-200603-03.xml
http://www.gentoo.org/security/en/glsa/glsa-200601-06.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:228
http://www.mandriva.com/security/advisories?name=MDKSA-2005:229
http://www.mandriva.com/security/advisories?name=MDKSA-2005:230
http://www.mandriva.com/security/advisories?name=MDKSA-2005:231
http://www.mandriva.com/security/advisories?name=MDKSA-2005:232
http://www.ubuntulinux.org/support/documentation/usn/usn-230-1
http://www.ubuntulinux.org/support/documentation/usn/usn-230-2
BugTraq ID: 15743
http://www.securityfocus.com/bid/15743
http://www.vupen.com/english/advisories/2005/2770
http://secunia.com/advisories/17892
http://secunia.com/advisories/18066
http://secunia.com/advisories/18107
http://secunia.com/advisories/18087
http://secunia.com/advisories/18739
http://secunia.com/advisories/18746
http://secunia.com/advisories/19114
http://secunia.com/advisories/19192
http://secunia.com/advisories/19272
http://secunia.com/advisories/19279
http://secunia.com/advisories/18400
Common Vulnerability Exposure (CVE) ID: CVE-2006-2802
http://milw0rm.com/exploits/1852
Debian Security Information: DSA-1105 (Google Search)
http://www.debian.org/security/2006/dsa-1105
http://security.gentoo.org/glsa/glsa-200609-08.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:108
SuSE Security Announcement: SUSE-SR:2006:014 (Google Search)
http://lists.suse.com/archive/suse-security-announce/2006-Jun/0008.html
http://www.ubuntulinux.org/support/documentation/usn/usn-295-1
BugTraq ID: 18187
http://www.securityfocus.com/bid/18187
http://www.osvdb.org/25936
http://secunia.com/advisories/20369
http://secunia.com/advisories/20549
http://secunia.com/advisories/20766
http://secunia.com/advisories/20828
http://secunia.com/advisories/20942
http://secunia.com/advisories/21919
XForce ISS Database: xinelib-xinepluginphttp-bo(26972)
http://xforce.iss.net/xforce/xfdb/26972
Common Vulnerability Exposure (CVE) ID: CVE-2006-4800
http://bugs.gentoo.org/show_bug.cgi?id=133520
Debian Security Information: DSA-1215 (Google Search)
http://www.us.debian.org/security/2006/dsa-1215
http://security.gentoo.org/glsa/glsa-200609-09.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:173
http://www.mandriva.com/security/advisories?name=MDKSA-2006:174
http://www.mandriva.com/security/advisories?name=MDKSA-2006:175
http://www.mandriva.com/security/advisories?name=MDKSA-2006:176
SuSE Security Announcement: SUSE-SA:2006:073 (Google Search)
http://www.novell.com/linux/security/advisories/2006_73_mono.html
http://www.ubuntu.com/usn/usn-358-1
BugTraq ID: 20009
http://www.securityfocus.com/bid/20009
http://secunia.com/advisories/21921
http://secunia.com/advisories/22180
http://secunia.com/advisories/22181
http://secunia.com/advisories/22182
http://secunia.com/advisories/22198
http://secunia.com/advisories/22200
http://secunia.com/advisories/22201
http://secunia.com/advisories/22202
http://secunia.com/advisories/22203
http://secunia.com/advisories/22230
http://secunia.com/advisories/23010
http://secunia.com/advisories/23213
CopyrightCopyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 39337 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

Registro de Nuevo Usuario
Email:
Usuario:
Contraseña:
Envíeme por email sus boletines mensuales, informándome los últimos servicios, mejoras y encuestas.
Por favor envíeme por email un anuncio de prueba de vulnerabilidades siempre que se agregue una nueva prueba.
   Privacidad
Ingreso de Usuario Registrado
 
Usuario:   
Contraseña:  

 ¿Olvidó su usuario o contraseña??
Email/ID de Usario:




Principal | Acerca de Nosotros | Contáctenos | Programas de Asociado | Privacidad | Listas de Correo | Abuso
Auditorías de Seguridad | DNS Administrado | Monitoreo de Red | Analizador de Sitio | Informes de Investigación de Internet
Prueba de Web | Whois

© 1998-2014 E-Soft Inc. Todos los derechos reservados.