Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2007:044 (ekiga)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.58088

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2007:044 (ekiga)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to ekiga
announced via advisory MDKSA-2007:044.

A format string flaw was discovered in how ekiga processes certain
messages, which could permit a remote attacker that can connect to
ekiga to potentially execute arbitrary code with the privileges of
the user running ekiga.

Updated package have been patched to correct this issue.

Affected: 2007.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:044

Risk factor : Critical

CVSS Score:
10.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-1006
1017673
http://www.securitytracker.com/id?1017673
22613
http://www.securityfocus.com/bid/22613
24194
http://secunia.com/advisories/24194
24228
http://secunia.com/advisories/24228
24229
http://secunia.com/advisories/24229
24271
http://secunia.com/advisories/24271
24379
http://secunia.com/advisories/24379
24680
http://secunia.com/advisories/24680
25119
http://secunia.com/advisories/25119
31939
http://www.osvdb.org/31939
ADV-2007-0655
http://www.vupen.com/english/advisories/2007/0655
DSA-1262
http://www.debian.org/security/2007/dsa-1262
FEDORA-2007-262
http://fedoranews.org/cms/node/2682
FEDORA-2007-263
http://fedoranews.org/cms/node/2683
GLSA-200703-25
http://security.gentoo.org/glsa/glsa-200703-25.xml
MDKSA-2007:044
http://www.mandriva.com/security/advisories?name=MDKSA-2007:044
RHSA-2007:0087
http://www.redhat.com/support/errata/RHSA-2007-0087.html
SUSE-SR:2007:009
http://www.novell.com/linux/security/advisories/2007_9_sr.html
USN-426-1
http://www.ubuntu.com/usn/usn-426-1
[Ekiga-list] 20070213 Ekiga 2.0.5 available
http://mail.gnome.org/archives/ekiga-list/2007-February/msg00060.html
http://labs.musecurity.com/advisories/MU-200702-01.txt
http://www.ekiga.org/index.php?rub=10&archive=1
oval:org.mitre.oval:def:11642
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11642

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.58088
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:044 (ekiga)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to ekiga announced via advisory MDKSA-2007:044. A format string flaw was discovered in how ekiga processes certain messages, which could permit a remote attacker that can connect to ekiga to potentially execute arbitrary code with the privileges of the user running ekiga. Updated package have been patched to correct this issue. Affected: 2007.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:044 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1006 1017673 http://www.securitytracker.com/id?1017673 22613 http://www.securityfocus.com/bid/22613 24194 http://secunia.com/advisories/24194 24228 http://secunia.com/advisories/24228 24229 http://secunia.com/advisories/24229 24271 http://secunia.com/advisories/24271 24379 http://secunia.com/advisories/24379 24680 http://secunia.com/advisories/24680 25119 http://secunia.com/advisories/25119 31939 http://www.osvdb.org/31939 ADV-2007-0655 http://www.vupen.com/english/advisories/2007/0655 DSA-1262 http://www.debian.org/security/2007/dsa-1262 FEDORA-2007-262 http://fedoranews.org/cms/node/2682 FEDORA-2007-263 http://fedoranews.org/cms/node/2683 GLSA-200703-25 http://security.gentoo.org/glsa/glsa-200703-25.xml MDKSA-2007:044 http://www.mandriva.com/security/advisories?name=MDKSA-2007:044 RHSA-2007:0087 http://www.redhat.com/support/errata/RHSA-2007-0087.html SUSE-SR:2007:009 http://www.novell.com/linux/security/advisories/2007_9_sr.html USN-426-1 http://www.ubuntu.com/usn/usn-426-1 [Ekiga-list] 20070213 Ekiga 2.0.5 available http://mail.gnome.org/archives/ekiga-list/2007-February/msg00060.html http://labs.musecurity.com/advisories/MU-200702-01.txt http://www.ekiga.org/index.php?rub=10&archive=1 oval:org.mitre.oval:def:11642 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11642
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com