|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu USN-648-1 (nasm)|
|Summary:||Ubuntu USN-648-1 (nasm)|
The remote host is missing an update to nasm
announced via advisory USN-648-1.
A security issue affects the following Ubuntu releases:
Ubuntu 8.04 LTS
This advisory also applies to the corresponding versions of
Kubuntu, Edubuntu, and Xubuntu.
Philipp Thomas discovered that the ppscan function of nasm contained
an off-by-one error. If a user or automated system were tricked into
assembling a specially crafted ASM file, a remote attacker could execute
arbitrary commands with user privileges.
The problem can be corrected by upgrading your system to the
following package versions:
Ubuntu 8.04 LTS:
In general, a standard system upgrade is sufficient to effect the
Risk factor : High
Common Vulnerability Exposure (CVE) ID: CVE-2008-2719|
BugTraq ID: 29656
XForce ISS Database: nasm-ppscan-bo(42995)
|Copyright||Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com|
|This is only one of 43500 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.