Test ID:	1.3.6.1.4.1.25623.1.0.53534
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-709-1)
Summary:	The remote host is missing an update for the Debian 'libexif' package(s) announced via the DSA-709-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'libexif' package(s) announced via the DSA-709-1 advisory. Vulnerability Insight: Sylvain Defresne discovered a buffer overflow in libexif, a library that parses EXIF files (such as JPEG files with extra tags). This bug could be exploited to crash the application and maybe to execute arbitrary code as well. For the stable distribution (woody) this problem has been fixed in version 0.5.0-1woody1. For the unstable distribution (sid) this problem has been fixed in version 0.6.9-5. We recommend that you upgrade your libexif package. Affected Software/OS: 'libexif' package(s) on Debian 3.0. Solution: Please install the updated package(s). CVSS Score: 2.6 CVSS Vector: AV:N/AC:H/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0664 Debian Security Information: DSA-709 (Google Search) http://www.debian.org/security/2005/dsa-709 http://www.gentoo.org/security/en/glsa/glsa-200503-17.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:064 https://bugzilla.ubuntu.com/show_bug.cgi?id=7152 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10832 http://www.redhat.com/support/errata/RHSA-2005-300.html http://securitytracker.com/id?1013398 http://secunia.com/advisories/17705 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102041-1 https://usn.ubuntu.com/91-1/ http://www.vupen.com/english/advisories/2005/0240 http://www.vupen.com/english/advisories/2005/2565
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.