Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2014-0035)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2014.0035

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2014-0035)

Resumen: The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2014-0035 advisory.

Descripción: Summary:
The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2014-0035 advisory.

Vulnerability Insight:
Adobe Flash Player 11.2.202.336 contains a fix to a critical security
vulnerability found in earlier versions that could cause a crash and
potentially allow an attacker to remotely take control of the affected
system.

This update resolves an integer underflow vulnerability that could be
exploited to execute arbitrary code on the affected system (CVE-2014-0497).

Adobe is aware of reports that an exploit for this vulnerability exists
in the wild.

Affected Software/OS:
'flash-player-plugin' package(s) on Mageia 3, Mageia 4.

Solution:
Please install the updated package(s).

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2014-0497
BugTraq ID: 65327
http://www.securityfocus.com/bid/65327
http://www.exploit-db.com/exploits/33212
http://www.osvdb.org/102849
RedHat Security Advisories: RHSA-2014:0137
http://rhn.redhat.com/errata/RHSA-2014-0137.html
http://www.securitytracker.com/id/1029715
http://secunia.com/advisories/56437
http://secunia.com/advisories/56737
http://secunia.com/advisories/56780
http://secunia.com/advisories/56799
http://secunia.com/advisories/56839
SuSE Security Announcement: SUSE-SU-2014:0221 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html
SuSE Security Announcement: openSUSE-SU-2014:0197 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html
SuSE Security Announcement: openSUSE-SU-2014:0203 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html
XForce ISS Database: adobe-flash-cve20140497-code-exec(90884)
https://exchange.xforce.ibmcloud.com/vulnerabilities/90884

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2014.0035
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2014-0035)
Resumen:	The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2014-0035 advisory.
Descripción:	Summary: The remote host is missing an update for the 'flash-player-plugin' package(s) announced via the MGASA-2014-0035 advisory. Vulnerability Insight: Adobe Flash Player 11.2.202.336 contains a fix to a critical security vulnerability found in earlier versions that could cause a crash and potentially allow an attacker to remotely take control of the affected system. This update resolves an integer underflow vulnerability that could be exploited to execute arbitrary code on the affected system (CVE-2014-0497). Adobe is aware of reports that an exploit for this vulnerability exists in the wild. Affected Software/OS: 'flash-player-plugin' package(s) on Mageia 3, Mageia 4. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0497 BugTraq ID: 65327 http://www.securityfocus.com/bid/65327 http://www.exploit-db.com/exploits/33212 http://www.osvdb.org/102849 RedHat Security Advisories: RHSA-2014:0137 http://rhn.redhat.com/errata/RHSA-2014-0137.html http://www.securitytracker.com/id/1029715 http://secunia.com/advisories/56437 http://secunia.com/advisories/56737 http://secunia.com/advisories/56780 http://secunia.com/advisories/56799 http://secunia.com/advisories/56839 SuSE Security Announcement: SUSE-SU-2014:0221 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00006.html SuSE Security Announcement: openSUSE-SU-2014:0197 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00000.html SuSE Security Announcement: openSUSE-SU-2014:0203 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-02/msg00001.html XForce ISS Database: adobe-flash-cve20140497-code-exec(90884) https://exchange.xforce.ibmcloud.com/vulnerabilities/90884
Copyright	Copyright (C) 2022 Greenbone AG