English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 94899 CVE descriptions
and 51984 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.51251
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2002:122
Summary:Redhat Security Advisory RHSA-2002:122
Description:Description:

The remote host is missing updates announced in
advisory RHSA-2002:122.

Updated gaim packages are now available for Red Hat Linux Advanced Server.
These updates fix a buffer overflow in the Jabber plug-in module.

Gaim is an instant messaging client based on the published TOC protocol
from AOL. Versions of gaim prior to 0.58 contain a buffer overflow in the
Jabber plug-in module.

Users of gaim should update to these errata packages containing gaim
0.59 which is not vulnerable to this issue.

Please note that gaim version 0.57 had an additional security problem
which has been fixed in version 0.58 (CVE-2002-0377)
however, Red Hat
Linux Advanced Server did not ship with version 0.57 and was not vulnerable
to this issue.

[update 14 Aug 2002]
Previous packages pushed were not signed, this update replaces the packages
with signed versions

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2002-122.html
http://gaim.sourceforge.net/ChangeLog

Risk factor : High

CVSS Score:
7.5

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2002-0384
http://www.redhat.com/support/errata/RHSA-2002-098.html
http://www.redhat.com/support/errata/RHSA-2002-107.html
http://www.redhat.com/support/errata/RHSA-2002-122.html
http://www.redhat.com/support/errata/RHSA-2003-156.html
http://frontal2.mandriva.com/security/advisories?name=MDKSA-2002:054
HPdes Security Advisory: HPSBTL0208-057
http://online.securityfocus.com/advisories/4358
http://www.iss.net/security_center/static/9766.php
BugTraq ID: 5406
http://www.securityfocus.com/bid/5406
http://www.osvdb.org/3729
Common Vulnerability Exposure (CVE) ID: CVE-2002-0377
Bugtraq: 20020512 Gaim abritary Email Reading (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=102130733815285&w=2
http://archives.neohapsis.com/archives/vuln-dev/2002-q2/0584.html
http://www.iss.net/security_center/static/9061.php
BugTraq ID: 4730
http://www.securityfocus.com/bid/4730
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 51984 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Developer APIs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2016 E-Soft Inc. All rights reserved.