Test ID:	1.3.6.1.4.1.25623.1.0.55108
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2005:142 (libtiff)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libtiff announced via advisory MDKSA-2005:142. Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the YCbCr subsampling value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which can cause a program that uses the TIFF library to crash. The updated packages are patched to protect against this vulnerability. Affected versions: 10.0, 10.1, 10.2, Corporate 3.0, Corporate Server 2.1, Multi Network Firewall 2.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2005:142 Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	BugTraq ID: 14417 Common Vulnerability Exposure (CVE) ID: CVE-2005-2452 http://www.securityfocus.com/bid/14417 http://www.mandriva.com/security/advisories?name=MDKSA-2005:142 http://www.mandriva.com/security/advisories?name=MDKSA-2005:143 http://www.mandriva.com/security/advisories?name=MDKSA-2005:144 https://bugzilla.ubuntu.com/show_bug.cgi?id=12008 http://secunia.com/advisories/16266 http://secunia.com/advisories/16486 https://usn.ubuntu.com/156-1/
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.