ID de Prueba:	1.3.6.1.4.1.25623.1.0.58432
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2007:0696
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2007:0696. The flash-plugin package contains a Firefox-compatible Adobe Flash Player browser plug-in. An input validation flaw was found in the way Flash Player displayed certain content. It may be possible to execute arbitrary code on a victim's machine if the victim opens a malicious Adobe Flash file. (CVE-2007-3456) Users of Adobe Flash Player should upgrade to this updated package, which contains version 9.0.47.0. and is not vulnerable to this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2007-0696.html http://www.adobe.com/support/security/bulletins/apsb07-12.html http://www.redhat.com/security/updates/classification/#critical Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3456 http://lists.apple.com/archives/security-announce/2007/Nov/msg00002.html BugTraq ID: 24856 http://www.securityfocus.com/bid/24856 BugTraq ID: 26444 http://www.securityfocus.com/bid/26444 Bugtraq: 20070713 [MSA01110707] Flash Player/Plugin Video file parsing Remote CodeExecution (Google Search) http://www.securityfocus.com/archive/1/473655/100/0/threaded Bugtraq: 20070719 Wii's Internet Channel affected to Flash FLV parser vulnerability (Google Search) http://www.securityfocus.com/archive/1/474163/100/200/threaded Bugtraq: 20070720 FLEA-2007-0032-1: flashplayer (Google Search) http://www.securityfocus.com/archive/1/474248/30/5760/threaded Cert/CC Advisory: TA07-192A http://www.us-cert.gov/cas/techalerts/TA07-192A.html Cert/CC Advisory: TA07-319A http://www.us-cert.gov/cas/techalerts/TA07-319A.html CERT/CC vulnerability note: VU#730785 http://www.kb.cert.org/vuls/id/730785 http://www.gentoo.org/security/en/glsa/glsa-200708-01.xml http://www.mindedsecurity.com/labs/advisories/MSA01110707 http://osvdb.org/38054 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11493 RedHat Security Advisories: RHSA-2007:0696 https://rhn.redhat.com/errata/RHSA-2007-0696.html http://www.securitytracker.com/id?1018359 http://secunia.com/advisories/26027 http://secunia.com/advisories/26057 http://secunia.com/advisories/26118 http://secunia.com/advisories/26357 http://secunia.com/advisories/27643 http://secunia.com/advisories/28068 http://sunsolve.sun.com/search/document.do?assetkey=1-26-103167-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201506-1 SuSE Security Announcement: SUSE-SA:2007:046 (Google Search) http://www.novell.com/linux/security/advisories/2007_46_flashplayer.html http://www.vupen.com/english/advisories/2007/2497 http://www.vupen.com/english/advisories/2007/3868 http://www.vupen.com/english/advisories/2007/4190 XForce ISS Database: flashplayer-swf-code-execution(35337) https://exchange.xforce.ibmcloud.com/vulnerabilities/35337
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.