Red Hat Local Security Checks : RedHat Security Advisory RHSA-2007:0011

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57770

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2007:0011

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2007:0011.

The GNOME Structured File Library is a utility library for reading and
writing structured file formats.

A heap based buffer overflow flaw was found in the way GNOME Structured
File Library processes and certain OLE documents. If an person opened a
specially crafted OLE file, it could cause the client application to crash or
execute arbitrary code. (CVE-2006-4514)

Users of GNOME Structured File Library should upgrade to these updated
packages, which contain a backported patch that resolves this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2007-0011.html
http://www.redhat.com/security/updates/classification/#moderate

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-4514
BugTraq ID: 21358
http://www.securityfocus.com/bid/21358
Bugtraq: 20061214 rPSA-2006-0232-1 libgsf (Google Search)
http://www.securityfocus.com/archive/1/454389/30/9210/threaded
Debian Security Information: DSA-1221 (Google Search)
http://www.debian.org/security/2006/dsa-1221
http://security.gentoo.org/glsa/glsa-200612-13.xml
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=446
http://www.mandriva.com/security/advisories?name=MDKSA-2006:220
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9413
RedHat Security Advisories: RHSA-2007:0011
http://rhn.redhat.com/errata/RHSA-2007-0011.html
http://secunia.com/advisories/23164
http://secunia.com/advisories/23166
http://secunia.com/advisories/23167
http://secunia.com/advisories/23227
http://secunia.com/advisories/23337
http://secunia.com/advisories/23352
http://secunia.com/advisories/23355
http://secunia.com/advisories/23686
http://secunia.com/advisories/23920
SGI Security Advisory: 20070101-01-P
ftp://patches.sgi.com/support/free/security/advisories/20070101-01-P.asc
SuSE Security Announcement: SUSE-SA:2006:076 (Google Search)
http://lists.suse.com/archive/suse-security-announce/2006-Dec/0005.html
http://www.ubuntu.com/usn/usn-391-1
http://www.vupen.com/english/advisories/2006/4784
XForce ISS Database: libgsf-metabat-bo(30611)
https://exchange.xforce.ibmcloud.com/vulnerabilities/30611

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57770
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2007:0011
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2007:0011. The GNOME Structured File Library is a utility library for reading and writing structured file formats. A heap based buffer overflow flaw was found in the way GNOME Structured File Library processes and certain OLE documents. If an person opened a specially crafted OLE file, it could cause the client application to crash or execute arbitrary code. (CVE-2006-4514) Users of GNOME Structured File Library should upgrade to these updated packages, which contain a backported patch that resolves this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2007-0011.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4514 BugTraq ID: 21358 http://www.securityfocus.com/bid/21358 Bugtraq: 20061214 rPSA-2006-0232-1 libgsf (Google Search) http://www.securityfocus.com/archive/1/454389/30/9210/threaded Debian Security Information: DSA-1221 (Google Search) http://www.debian.org/security/2006/dsa-1221 http://security.gentoo.org/glsa/glsa-200612-13.xml http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=446 http://www.mandriva.com/security/advisories?name=MDKSA-2006:220 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9413 RedHat Security Advisories: RHSA-2007:0011 http://rhn.redhat.com/errata/RHSA-2007-0011.html http://secunia.com/advisories/23164 http://secunia.com/advisories/23166 http://secunia.com/advisories/23167 http://secunia.com/advisories/23227 http://secunia.com/advisories/23337 http://secunia.com/advisories/23352 http://secunia.com/advisories/23355 http://secunia.com/advisories/23686 http://secunia.com/advisories/23920 SGI Security Advisory: 20070101-01-P ftp://patches.sgi.com/support/free/security/advisories/20070101-01-P.asc SuSE Security Announcement: SUSE-SA:2006:076 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-Dec/0005.html http://www.ubuntu.com/usn/usn-391-1 http://www.vupen.com/english/advisories/2006/4784 XForce ISS Database: libgsf-metabat-bo(30611) https://exchange.xforce.ibmcloud.com/vulnerabilities/30611
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com