ID de Prueba:	1.3.6.1.4.1.25623.1.0.59937
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:238 (liblcms)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to liblcms announced via advisory MDKSA-2007:238. Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file. Updated package fixes this issue. Affected: Corporate 3.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2007:238 Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-2741 BugTraq ID: 24001 http://www.securityfocus.com/bid/24001 http://www.mandriva.com/security/advisories?name=MDKSA-2007:238 http://scary.beasts.org/security/CESA-2007-001.html http://osvdb.org/36179 http://secunia.com/advisories/25294 http://secunia.com/advisories/27756 http://secunia.com/advisories/32282 SuSE Security Announcement: SUSE-SR:2007:024 (Google Search) http://www.novell.com/linux/security/advisories/2007_24_sr.html http://www.ubuntu.com/usn/usn-652-1 http://www.vupen.com/english/advisories/2007/1837 XForce ISS Database: littlecms-iccprofile-bo(34331) https://exchange.xforce.ibmcloud.com/vulnerabilities/34331
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.