| |||||||||||||
| Test ID: | 1.3.6.1.4.1.25623.1.0.52552 |
| Category: | Red Hat Local Security Checks |
| Title: | RedHat Security Advisory RHSA-2005:381 |
| Summary: | Redhat Security Advisory RHSA-2005:381 |
| Description: | The remote host is missing updates announced in advisory RHSA-2005:381. NASM is an 80x86 assembler. Two stack based buffer overflow bugs have been found in nasm. An attacker could create an ASM file in such a way that when compiled by a victim, could execute arbitrary code on their machine. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CVE-2004-1287 and CVE-2005-1194 to these issues. All users of nasm are advised to upgrade to this updated package, which contains backported fixes for these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-381.html http://tigger.uic.edu/~ jlongs2/holes/nasm.txt Risk factor : Critical |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2004-1287 http://tigger.uic.edu/~jlongs2/holes/nasm.txt http://www.redhat.com/support/errata/RHSA-2005-381.html http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11299 XForce ISS Database: nasm-preprocc-bo(18540) http://xforce.iss.net/xforce/xfdb/18540 Common Vulnerability Exposure (CVE) ID: CVE-2005-1194 BugTraq ID: 13506 http://www.securityfocus.com/bid/13506 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11256 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |
|
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois
© 1998-2013 E-Soft Inc. All rights reserved.