Test Kennung:	1.3.6.1.4.1.25623.1.1.2.2017.1019
Kategorie:	Huawei EulerOS Local Security Checks
Titel:	Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2017-1019)
Zusammenfassung:	The remote host is missing an update for the Huawei EulerOS 'libtiff' package(s) announced via the EulerOS-SA-2017-1019 advisory.
Beschreibung:	Summary: The remote host is missing an update for the Huawei EulerOS 'libtiff' package(s) announced via the EulerOS-SA-2017-1019 advisory. Vulnerability Insight: Multiple flaws have been discovered in libtiff. A remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code by tricking an application linked against libtiff into processing specially crafted files. (CVE-2016-9533, CVE-2016-9534, CVE-2016-9535) Multiple flaws have been discovered in various libtiff tools (tiff2pdf, tiffcrop, tiffcp, bmp2tiff). By tricking a user into processing a specially crafted file, a remote attacker could exploit these flaws to cause a crash or memory corruption and, possibly, execute arbitrary code with the privileges of the user running the libtiff tool. (CVE-2015-8870, CVE-2016-5652, CVE-2016-9540, CVE-2016-9537, CVE-2016-9536) Affected Software/OS: 'libtiff' package(s) on Huawei EulerOS V2.0SP1. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-8870 BugTraq ID: 94717 http://www.securityfocus.com/bid/94717 http://www.floyd.ch/?p=874BMP RedHat Security Advisories: RHSA-2017:0225 http://rhn.redhat.com/errata/RHSA-2017-0225.html Common Vulnerability Exposure (CVE) ID: CVE-2016-5652 BugTraq ID: 93902 http://www.securityfocus.com/bid/93902 Debian Security Information: DSA-3762 (Google Search) http://www.debian.org/security/2017/dsa-3762 https://security.gentoo.org/glsa/201701-16 http://www.talosintelligence.com/reports/TALOS-2016-0187/ Common Vulnerability Exposure (CVE) ID: CVE-2016-9533 BugTraq ID: 94484 http://www.securityfocus.com/bid/94484 BugTraq ID: 94742 http://www.securityfocus.com/bid/94742 Common Vulnerability Exposure (CVE) ID: CVE-2016-9534 BugTraq ID: 94743 http://www.securityfocus.com/bid/94743 Common Vulnerability Exposure (CVE) ID: CVE-2016-9535 BugTraq ID: 94744 http://www.securityfocus.com/bid/94744 Debian Security Information: DSA-3844 (Google Search) http://www.debian.org/security/2017/dsa-3844 Common Vulnerability Exposure (CVE) ID: CVE-2016-9536 BugTraq ID: 94745 http://www.securityfocus.com/bid/94745 Common Vulnerability Exposure (CVE) ID: CVE-2016-9537 BugTraq ID: 94746 http://www.securityfocus.com/bid/94746 Common Vulnerability Exposure (CVE) ID: CVE-2016-9540 BugTraq ID: 94747 http://www.securityfocus.com/bid/94747
Copyright	Copyright (C) 2020 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.