Test ID:	1.3.6.1.4.1.25623.1.0.51343
Category:	Conectiva Local Security Checks
Title:	Conectiva Security Advisory CLA-2004:840
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory CLA-2004:840. Lha is an archiving and compression utility for LHarc format archives. Ulf Härnhammar discovered a buffer overflow[1] and a directory traversal [2]vulnerability in the lha utility. Both vulnerabilities can be exploited by an attacker with the use of specially crafted LHarc archives. When processed by lha, these files may cause it to execute arbitrary code (exploiting the buffer overflow vulnerability) or overwrite arbitrary files if the user unpacking the malicious archive has sufficient filesystem permissions to do so (exploiting the directory traversal vulnerability). This update fixes both issues. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0234 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0235 http://www.securityspace.com/smysecure/catid.html?in=CLA-2004:840 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002004 Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0234 BugTraq ID: 10243 http://www.securityfocus.com/bid/10243 Bugtraq: 20040510 [Ulf Harnhammar]: LHA Advisory + Patch (Google Search) http://marc.info/?l=bugtraq&m=108422737918885&w=2 Bugtraq: 20060403 Barracuda LHA archiver security bug leads to remote compromise (Google Search) http://archives.neohapsis.com/archives/bugtraq/2006-04/0059.html Conectiva Linux advisory: CLA-2004:840 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000840 Debian Security Information: DSA-515 (Google Search) http://www.debian.org/security/2004/dsa-515 http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00005.html https://bugzilla.fedora.us/show_bug.cgi?id=1833 http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020778.html http://security.gentoo.org/glsa/glsa-200405-02.xml http://www.guay-leroux.com/projects/barracuda-advisory-LHA.txt http://www.osvdb.org/5753 http://www.osvdb.org/5754 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A977 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9881 http://www.redhat.com/support/errata/RHSA-2004-178.html http://www.redhat.com/support/errata/RHSA-2004-179.html http://securitytracker.com/id?1015866 http://secunia.com/advisories/19514 http://www.vupen.com/english/advisories/2006/1220 XForce ISS Database: lha-multiple-bo(16012) https://exchange.xforce.ibmcloud.com/vulnerabilities/16012 Common Vulnerability Exposure (CVE) ID: CVE-2004-0235 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10409 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A978 XForce ISS Database: lha-directory-traversal(16013) https://exchange.xforce.ibmcloud.com/vulnerabilities/16013
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.