Test ID:	1.3.6.1.4.1.25623.1.0.72118
Category:	Mandrake Local Security Checks
Title:	Mandriva Security Advisory MDVSA-2012:133 (usbmuxd)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to usbmuxd announced via advisory MDVSA-2012:133. It was discovered that usbmuxd did not correctly perform bounds checking when processing the SerialNumber field of USB devices. An attacker with physical access could use this to crash usbmuxd or potentially execute arbitrary code as the ' usbmux' user (CVE-2012-0065). The updated packages have been patched to correct this issue. Affected: 2011. Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2012:133 Risk factor : High
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0065 47545 http://secunia.com/advisories/47545 51573 http://www.securityfocus.com/bid/51573 MDVSA-2012:133 http://www.mandriva.com/security/advisories?name=MDVSA-2012:133 MDVSA-2013:133 http://www.mandriva.com/security/advisories?name=MDVSA-2013:133 [oss-security] 20120119 CVE request: usbmuxd 1.0.7 "receive_packet()" Buffer Overflow Vulnerability http://openwall.com/lists/oss-security/2012/01/19/25 [oss-security] 20120119 Re: CVE request: usbmuxd 1.0.7 "receive_packet()" Buffer Overflow Vulnerability http://openwall.com/lists/oss-security/2012/01/19/26 http://git.marcansoft.com/?p=usbmuxd.git%3Ba=commitdiff%3Bh=f794991993af56a74795891b4ff9da506bc893e6 https://bugs.gentoo.org/show_bug.cgi?id=399409 https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0228 usbmuxd-libusbmuxd-bo(72546) https://exchange.xforce.ibmcloud.com/vulnerabilities/72546
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.