Test ID:	1.3.6.1.4.1.25623.1.0.52552
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2005:381
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2005:381. NASM is an 80x86 assembler. Two stack based buffer overflow bugs have been found in nasm. An attacker could create an ASM file in such a way that when compiled by a victim, could execute arbitrary code on their machine. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2004-1287 and CVE-2005-1194 to these issues. All users of nasm are advised to upgrade to this updated package, which contains backported fixes for these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-381.html http://tigger.uic.edu/~ jlongs2/holes/nasm.txt Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1287 http://tigger.uic.edu/~jlongs2/holes/nasm.txt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11299 http://www.redhat.com/support/errata/RHSA-2005-381.html XForce ISS Database: nasm-preprocc-bo(18540) https://exchange.xforce.ibmcloud.com/vulnerabilities/18540 Common Vulnerability Exposure (CVE) ID: CVE-2005-1194 13506 http://www.securityfocus.com/bid/13506 RHSA-2005:381 oval:org.mitre.oval:def:11256 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11256
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.