| |||||||||||||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.801439 |
| Categoría: | Buffer overflow |
| Título: | SWFTools Multiple Integer Overflow Vulnerabilities |
| Resumen: | Check for the version of SWFTools |
| Descripción: | Overview: This host is installed with SWFTools and is prone to multiple integer overflow vulnerabilities. Vulnerability Insight: The flaws are due to an error within the 'getPNG()' function in 'lib/png.c' and 'jpeg_load()' function in 'lib/jpeg.c'. Impact: Successful exploitation will allow remote attackers to cause a heap-based buffer overflow via specially crafted JPEG and PNG images. Impact Level: Application. Affected Software: SWFTools version 0.9.1 and prior. Fix: No solution or patch is available as of 18th, August 2010. Information regarding this issue will be updated once the solution details are available. For updates refer to http://www.swftools.org/download.html References: http://secunia.com/advisories/39970 http://secunia.com/secunia_research/2010-80/ http://www.securityfocus.com/archive/1/archive/1/513102/100/0/threaded |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-1516 Bugtraq: 20100813 Secunia Research: SWFTools Two Integer Overflow Vulnerabilities (Google Search) http://www.securityfocus.com/archive/1/archive/1/513102/100/0/threaded http://secunia.com/secunia_research/2010-80/ http://security.gentoo.org/glsa/glsa-201204-05.xml http://secunia.com/advisories/39970 http://secunia.com/advisories/48821 |
| Copyright | Copyright (C) 2010 Greenbone Networks GmbH |
| Esta es sólo una de 32582 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |
|
Auditorías de Seguridad | DNS Administrado | Monitoreo de Red | Analizador de Sitio | Informes de Investigación de Internet
Prueba de Web | Whois
© 1998-2013 E-Soft Inc. Todos los derechos reservados.