ID de Prueba:	1.3.6.1.4.1.25623.1.0.57616
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2006:184 (clamav)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to clamav announced via advisory MDKSA-2006:184. An integer overflow in previous versions of ClamAV could allow a remote attacker to cause a Denial of Service (scanning service crash) and execute arbitrary code via a Portable Executable (PE) file (CVE-2006-4182). Another vulnerability could allow a remote attacker to cause a DoS via a crafted compressed HTML (CHM) file that causes ClamAV to read an invalid memory location (CVE-2006-5295). These issues are corrected in ClamAV 0.88.5 which is provided with this update. Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2006:184 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4182 http://lists.apple.com/archives/security-announce/2006/Nov/msg00001.html BugTraq ID: 20535 http://www.securityfocus.com/bid/20535 Cert/CC Advisory: TA06-333A http://www.us-cert.gov/cas/techalerts/TA06-333A.html CERT/CC vulnerability note: VU#180864 http://www.kb.cert.org/vuls/id/180864 Debian Security Information: DSA-1196 (Google Search) http://www.debian.org/security/2006/dsa-1196 http://security.gentoo.org/glsa/glsa-200610-10.xml http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=422 http://www.mandriva.com/security/advisories?name=MDKSA-2006:184 http://securitytracker.com/id?1017068 http://secunia.com/advisories/22370 http://secunia.com/advisories/22421 http://secunia.com/advisories/22488 http://secunia.com/advisories/22498 http://secunia.com/advisories/22537 http://secunia.com/advisories/22551 http://secunia.com/advisories/22626 http://secunia.com/advisories/23155 SuSE Security Announcement: SUSE-SA:2006:060 (Google Search) http://www.novell.com/linux/security/advisories/2006_60_clamav.html http://www.vupen.com/english/advisories/2006/4034 http://www.vupen.com/english/advisories/2006/4136 http://www.vupen.com/english/advisories/2006/4264 http://www.vupen.com/english/advisories/2006/4750 XForce ISS Database: clamav-rebuildpe-bo(29607) https://exchange.xforce.ibmcloud.com/vulnerabilities/29607 Common Vulnerability Exposure (CVE) ID: CVE-2006-5295 BugTraq ID: 20537 http://www.securityfocus.com/bid/20537 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=423 XForce ISS Database: clamav-chm-dos(29608) https://exchange.xforce.ibmcloud.com/vulnerabilities/29608
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.