Test ID:	1.3.6.1.4.1.25623.1.0.50314
Category:	Fedora Local Security Checks
Title:	Fedora Core 1 FEDORA-2004-119 (lha)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to lha announced via advisory FEDORA-2004-119. LHA is an archiving and compression utility for LHarc format archives. LHA is mostly used in the DOS world, but can be used under Linux to extract DOS files from LHA archives. Install the lha package if you need to extract DOS files from LHA archives. Update Information: Ulf Härnhammar discovered two stack buffer overflows and two directory traversal flaws in LHA. An attacker could exploit the buffer overflows by creating a carefully crafted LHA archive in such a way that arbitrary code would be executed when the archive is tested or extracted by a victim. CVE-2004-0234. An attacker could exploit the directory traversal issues to create files as the victim outside of the expected directory. CVE-2004-0235. * Wed May 05 2004 Than Ngo 1.14i-12.1 - fix security vulnerabilities, CVE-2004-0234, CVE-2004-0235 Solution: Apply the appropriate updates. http://www.fedoranews.org/updates/FEDORA-2004-119.shtml Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0234 BugTraq ID: 10243 http://www.securityfocus.com/bid/10243 Bugtraq: 20040510 [Ulf Harnhammar]: LHA Advisory + Patch (Google Search) http://marc.info/?l=bugtraq&m=108422737918885&w=2 Bugtraq: 20060403 Barracuda LHA archiver security bug leads to remote compromise (Google Search) http://archives.neohapsis.com/archives/bugtraq/2006-04/0059.html Conectiva Linux advisory: CLA-2004:840 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000840 Debian Security Information: DSA-515 (Google Search) http://www.debian.org/security/2004/dsa-515 http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00005.html https://bugzilla.fedora.us/show_bug.cgi?id=1833 http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020778.html http://security.gentoo.org/glsa/glsa-200405-02.xml http://www.guay-leroux.com/projects/barracuda-advisory-LHA.txt http://www.osvdb.org/5753 http://www.osvdb.org/5754 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A977 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9881 http://www.redhat.com/support/errata/RHSA-2004-178.html http://www.redhat.com/support/errata/RHSA-2004-179.html http://securitytracker.com/id?1015866 http://secunia.com/advisories/19514 http://www.vupen.com/english/advisories/2006/1220 XForce ISS Database: lha-multiple-bo(16012) https://exchange.xforce.ibmcloud.com/vulnerabilities/16012 Common Vulnerability Exposure (CVE) ID: CVE-2004-0235 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10409 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A978 XForce ISS Database: lha-directory-traversal(16013) https://exchange.xforce.ibmcloud.com/vulnerabilities/16013
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.