Test ID:	1.3.6.1.4.1.25623.1.0.66749
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-887-1 (libthai)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to libthai announced via advisory USN-887-1. Details follow: Tim Starling discovered that LibThai did not correctly handle long strings. A remote attacker could use specially-formed strings to execute arbitrary code with the user's privileges. Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: libthai0 0.1.9-1ubuntu0.2 Ubuntu 8.10: libthai0 0.1.9-4ubuntu0.8.10.2 Ubuntu 9.04: libthai0 0.1.9-4ubuntu0.9.04.2 Ubuntu 9.10: libthai0 0.1.12-1ubuntu0.2 In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-887-1 Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4012 BugTraq ID: 37822 http://www.securityfocus.com/bid/37822 Debian Security Information: DSA-1971 (Google Search) http://www.debian.org/security/2010/dsa-1971 http://secunia.com/advisories/38196 http://secunia.com/advisories/38213 http://secunia.com/advisories/38235 http://secunia.com/advisories/38420 SuSE Security Announcement: SUSE-SR:2010:002 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-02/msg00000.html http://ubuntu.com/usn/usn-887-1
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.