ID de Prueba:	1.3.6.1.4.1.25623.1.0.52099
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2005:076 (xli)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to xli announced via advisory MDKSA-2005:076. A number of vulnerabilities have been found in the xli image viewer. Tavis Ormandy of the Gentoo Linux Security Audit Team discovered a flaw in the handling of compressed images where shell meta-characters are not properly escaped (CVE-2005-0638). It was also found that insufficient validation of image properties could potentially result in buffer management errors (CVE-2005-0639). The updated packages have been patched to correct these problems. Affected versions: 10.1, 10.2, Corporate 3.0, Corporate Server 2.1 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:076 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0638 BugTraq ID: 12712 http://www.securityfocus.com/bid/12712 Debian Security Information: DSA-695 (Google Search) http://www.debian.org/security/2005/dsa-695 http://www.securityfocus.com/archive/1/433935/30/5010/threaded http://security.gentoo.org/glsa/glsa-200503-05.xml http://www.osvdb.org/14365 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10898 http://www.redhat.com/support/errata/RHSA-2005-332.html http://secunia.com/advisories/14459 http://secunia.com/advisories/14462 Common Vulnerability Exposure (CVE) ID: CVE-2005-0639
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.