Test ID:	1.3.6.1.4.1.25623.1.0.59793
Category:	Fedora Local Security Checks
Title:	Fedora Core 7 FEDORA-2007-2050 (clamav)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to clamav announced via advisory FEDORA-2007-2050. Update Information: * Sat Aug 25 2007 Enrico Scholz - 0.91.2-2 - fixed an open(2) issue * Sat Aug 25 2007 Enrico Scholz - 0.91.2-1 - updated to 0.91.2 (SECURITY): - CVE-2007-4510 DOS in RTF parser - DOS in html normalizer - arbitrary command execution by special crafted recipients in clamav-milter's black-hole mode References: [ 1 ] Bug #253780 https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=253780 Solution: Apply the appropriate updates. This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2007-2050 Risk factor : Medium CVSS Score: 4.3
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4510 http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html BugTraq ID: 25398 http://www.securityfocus.com/bid/25398 Debian Security Information: DSA-1366 (Google Search) http://www.debian.org/security/2007/dsa-1366 https://www.redhat.com/archives/fedora-package-announce/2007-September/msg00104.html http://security.gentoo.org/glsa/glsa-200709-14.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:172 http://secunia.com/advisories/26530 http://secunia.com/advisories/26552 http://secunia.com/advisories/26654 http://secunia.com/advisories/26674 http://secunia.com/advisories/26683 http://secunia.com/advisories/26751 http://secunia.com/advisories/26822 http://secunia.com/advisories/26916 http://secunia.com/advisories/29420 http://securityreason.com/securityalert/3054 SuSE Security Announcement: SUSE-SR:2007:018 (Google Search) http://www.novell.com/linux/security/advisories/2007_18_sr.html http://www.trustix.org/errata/2007/0026/ http://www.vupen.com/english/advisories/2007/2952 http://www.vupen.com/english/advisories/2008/0924/references XForce ISS Database: clamav-clihtmlnormalise-dos(36177) https://exchange.xforce.ibmcloud.com/vulnerabilities/36177 XForce ISS Database: clamav-rtf-dos(36173) https://exchange.xforce.ibmcloud.com/vulnerabilities/36173
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.