Mandrake Local Security Checks : Mandrake Security Advisory MDVSA-2008:182-1 (wordnet)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.61625

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDVSA-2008:182-1 (wordnet)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to wordnet
announced via advisory MDVSA-2008:182-1.

Rob Holland found several programming errors in WordNet which could
lead to the execution or arbitrary code when used with untrusted input
(CVE-2008-2149, CVE-2008-3908).

Update:

The previous patch had a typo that caused incorrect behaviour in
WordNet. This update uses an update patch that corrects the issue
and also notes the additional assigned CVE name for these issues.

Affected: 2008.0, 2008.1

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2008:182-1

Risk factor : Critical

CVSS Score:
10.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-2149
BugTraq ID: 29208
http://www.securityfocus.com/bid/29208
Debian Security Information: DSA-1634 (Google Search)
http://www.debian.org/security/2008/dsa-1634
http://www.gentoo.org/security/en/glsa/glsa-200810-01.xml
http://www.mandriva.com/security/advisories?name=MDVSA-2008:182
http://secunia.com/advisories/30242
http://secunia.com/advisories/31654
http://secunia.com/advisories/32184
http://www.vupen.com/english/advisories/2008/1527/references
XForce ISS Database: wordnet-searchwn-bo(42378)
https://exchange.xforce.ibmcloud.com/vulnerabilities/42378
Common Vulnerability Exposure (CVE) ID: CVE-2008-3908
BugTraq ID: 30958
http://www.securityfocus.com/bid/30958
Bugtraq: 20080901 [oCERT-2008-014] WordNet stack and heap overflows (Google Search)
http://www.securityfocus.com/archive/1/495883/100/0/threaded
http://www.ocert.org/advisories/ocert-2008-014.html
http://www.ocert.org/analysis/2008-014/analysis.txt
http://www.ocert.org/analysis/2008-014/wordnet.patch
http://securityreason.com/securityalert/4217
XForce ISS Database: wordnet-binsrch-search-bo(44851)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44851
XForce ISS Database: wordnet-morph-search-bo(44848)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44848
XForce ISS Database: wordnet-morphinit-bo(44849)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44849
XForce ISS Database: wordnet-wninit-bo(44850)
https://exchange.xforce.ibmcloud.com/vulnerabilities/44850

Copyright Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.61625
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2008:182-1 (wordnet)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to wordnet announced via advisory MDVSA-2008:182-1. Rob Holland found several programming errors in WordNet which could lead to the execution or arbitrary code when used with untrusted input (CVE-2008-2149, CVE-2008-3908). Update: The previous patch had a typo that caused incorrect behaviour in WordNet. This update uses an update patch that corrects the issue and also notes the additional assigned CVE name for these issues. Affected: 2008.0, 2008.1 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2008:182-1 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-2149 BugTraq ID: 29208 http://www.securityfocus.com/bid/29208 Debian Security Information: DSA-1634 (Google Search) http://www.debian.org/security/2008/dsa-1634 http://www.gentoo.org/security/en/glsa/glsa-200810-01.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:182 http://secunia.com/advisories/30242 http://secunia.com/advisories/31654 http://secunia.com/advisories/32184 http://www.vupen.com/english/advisories/2008/1527/references XForce ISS Database: wordnet-searchwn-bo(42378) https://exchange.xforce.ibmcloud.com/vulnerabilities/42378 Common Vulnerability Exposure (CVE) ID: CVE-2008-3908 BugTraq ID: 30958 http://www.securityfocus.com/bid/30958 Bugtraq: 20080901 [oCERT-2008-014] WordNet stack and heap overflows (Google Search) http://www.securityfocus.com/archive/1/495883/100/0/threaded http://www.ocert.org/advisories/ocert-2008-014.html http://www.ocert.org/analysis/2008-014/analysis.txt http://www.ocert.org/analysis/2008-014/wordnet.patch http://securityreason.com/securityalert/4217 XForce ISS Database: wordnet-binsrch-search-bo(44851) https://exchange.xforce.ibmcloud.com/vulnerabilities/44851 XForce ISS Database: wordnet-morph-search-bo(44848) https://exchange.xforce.ibmcloud.com/vulnerabilities/44848 XForce ISS Database: wordnet-morphinit-bo(44849) https://exchange.xforce.ibmcloud.com/vulnerabilities/44849 XForce ISS Database: wordnet-wninit-bo(44850) https://exchange.xforce.ibmcloud.com/vulnerabilities/44850
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com