Mandrake Local Security Checks : Mandriva Security Advisory MDVSA-2011:002 (wireshark)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.68731

Categoría: Mandrake Local Security Checks

Título: Mandriva Security Advisory MDVSA-2011:002 (wireshark)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to wireshark
announced via advisory MDVSA-2011:002.

A vulnerability has been found and corrected in wireshark:

Buffer overflow in epan/dissectors/packet-enttec.c in Wireshark 1.4.2
allows remote attackers to cause a denial of service (application
crash) or possibly execute arbitrary code via a crafted ENTTEC DMX
packet with Run Length Encoding (RLE) compression (CVE-2010-4538).

The updated packages have been patched to correct this issue.

Affected: 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:002

Risk factor : Critical

CVSS Score:
9.3

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-4538
1024930
http://www.securitytracker.com/id?1024930
42767
http://secunia.com/advisories/42767
42853
http://secunia.com/advisories/42853
42910
http://secunia.com/advisories/42910
42914
http://secunia.com/advisories/42914
45634
http://www.securityfocus.com/bid/45634
70244
http://osvdb.org/70244
ADV-2011-0008
http://www.vupen.com/english/advisories/2011/0008
ADV-2011-0053
http://www.vupen.com/english/advisories/2011/0053
ADV-2011-0069
http://www.vupen.com/english/advisories/2011/0069
ADV-2011-0079
http://www.vupen.com/english/advisories/2011/0079
ADV-2011-0099
http://www.vupen.com/english/advisories/2011/0099
ADV-2011-0110
http://www.vupen.com/english/advisories/2011/0110
DSA-2144
http://www.debian.org/security/2011/dsa-2144
FEDORA-2011-0128
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053042.html
FEDORA-2011-0167
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053061.html
MDVSA-2011:002
http://www.mandriva.com/security/advisories?name=MDVSA-2011:002
RHSA-2011:0013
http://www.redhat.com/support/errata/RHSA-2011-0013.html
[oss-security] 20101231 CVE Request: Wireshark
http://openwall.com/lists/oss-security/2010/12/31/7
[oss-security] 20110103 Re: CVE Request: Wireshark
http://openwall.com/lists/oss-security/2011/01/03/8
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5539
oval:org.mitre.oval:def:14937
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14937

Copyright Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.68731
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2011:002 (wireshark)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to wireshark announced via advisory MDVSA-2011:002. A vulnerability has been found and corrected in wireshark: Buffer overflow in epan/dissectors/packet-enttec.c in Wireshark 1.4.2 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted ENTTEC DMX packet with Run Length Encoding (RLE) compression (CVE-2010-4538). The updated packages have been patched to correct this issue. Affected: 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2011:002 Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4538 1024930 http://www.securitytracker.com/id?1024930 42767 http://secunia.com/advisories/42767 42853 http://secunia.com/advisories/42853 42910 http://secunia.com/advisories/42910 42914 http://secunia.com/advisories/42914 45634 http://www.securityfocus.com/bid/45634 70244 http://osvdb.org/70244 ADV-2011-0008 http://www.vupen.com/english/advisories/2011/0008 ADV-2011-0053 http://www.vupen.com/english/advisories/2011/0053 ADV-2011-0069 http://www.vupen.com/english/advisories/2011/0069 ADV-2011-0079 http://www.vupen.com/english/advisories/2011/0079 ADV-2011-0099 http://www.vupen.com/english/advisories/2011/0099 ADV-2011-0110 http://www.vupen.com/english/advisories/2011/0110 DSA-2144 http://www.debian.org/security/2011/dsa-2144 FEDORA-2011-0128 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053042.html FEDORA-2011-0167 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/053061.html MDVSA-2011:002 http://www.mandriva.com/security/advisories?name=MDVSA-2011:002 RHSA-2011:0013 http://www.redhat.com/support/errata/RHSA-2011-0013.html [oss-security] 20101231 CVE Request: Wireshark http://openwall.com/lists/oss-security/2010/12/31/7 [oss-security] 20110103 Re: CVE Request: Wireshark http://openwall.com/lists/oss-security/2011/01/03/8 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=5539 oval:org.mitre.oval:def:14937 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14937
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com