Test ID:	1.3.6.1.4.1.25623.1.0.66712
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2010:010 (libthai)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libthai announced via advisory MDVSA-2010:010. Multiple vulnerabilities has been found and corrected in libthai: Tim Starling discovered that libthai, a set of Thai language support routines, is vulnerable of integer/heap overflow. This vulnerability could allow an attacker to run arbitrary code by sending a very long string (CVE-2009-4012). Packages for 2008.0 are provided for Corporate Desktop 2008.0 customers. The updated packages have been patched to correct these issues. Affected: 2008.0, 2009.0, 2009.1, 2010.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2010:010 Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4012 BugTraq ID: 37822 http://www.securityfocus.com/bid/37822 Debian Security Information: DSA-1971 (Google Search) http://www.debian.org/security/2010/dsa-1971 http://secunia.com/advisories/38196 http://secunia.com/advisories/38213 http://secunia.com/advisories/38235 http://secunia.com/advisories/38420 SuSE Security Announcement: SUSE-SR:2010:002 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.html http://ubuntu.com/usn/usn-887-1
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.