ID de Prueba:	1.3.6.1.4.1.25623.1.0.58462
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:147 (ImageMagick)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to ImageMagick announced via advisory MDKSA-2007:147. A number of vulnerabilities were discovered in how ImageMagick handles DCM and XWD image files. If a user were tricked into processing a specially crafted image file with an application that uses ImageMagick, an attacker could cause a heap-based buffer overflow and possibly execute arbitrary code with the user's privileges. The updated packages have been patched to prevent these issues. Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:147 Risk factor : Critical CVSS Score: 9.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1667 http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html BugTraq ID: 23300 http://www.securityfocus.com/bid/23300 Bugtraq: 20070404 rPSA-2007-0065-1 freetype xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs (Google Search) http://www.securityfocus.com/archive/1/464686/100/0/threaded Bugtraq: 20070405 FLEA-2007-0009-1: xorg-x11 freetype (Google Search) http://www.securityfocus.com/archive/1/464816/100/0/threaded Debian Security Information: DSA-1294 (Google Search) http://www.debian.org/security/2007/dsa-1294 Debian Security Information: DSA-1858 (Google Search) http://www.debian.org/security/2009/dsa-1858 http://security.gentoo.org/glsa/glsa-200705-06.xml http://www.gentoo.org/security/en/glsa/glsa-200805-07.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:079 http://www.mandriva.com/security/advisories?name=MDKSA-2007:147 http://lists.freedesktop.org/archives/xorg-announce/2007-April/000286.html OpenBSD Security Advisory: [3.9] 021: SECURITY FIX: April 4, 2007 http://www.openbsd.org/errata39.html#021_xorg OpenBSD Security Advisory: [4.0] 011: SECURITY FIX: April 4, 2007 http://www.openbsd.org/errata40.html#011_xorg https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1693 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9776 RedHat Security Advisories: RHSA-2007:0125 http://rhn.redhat.com/errata/RHSA-2007-0125.html http://www.redhat.com/support/errata/RHSA-2007-0126.html http://www.redhat.com/support/errata/RHSA-2007-0157.html http://www.securitytracker.com/id?1017864 http://secunia.com/advisories/24739 http://secunia.com/advisories/24741 http://secunia.com/advisories/24745 http://secunia.com/advisories/24756 http://secunia.com/advisories/24758 http://secunia.com/advisories/24765 http://secunia.com/advisories/24771 http://secunia.com/advisories/24791 http://secunia.com/advisories/24953 http://secunia.com/advisories/24975 http://secunia.com/advisories/25004 http://secunia.com/advisories/25072 http://secunia.com/advisories/25112 http://secunia.com/advisories/25131 http://secunia.com/advisories/25305 http://secunia.com/advisories/25992 http://secunia.com/advisories/26177 http://secunia.com/advisories/30161 http://secunia.com/advisories/33937 http://secunia.com/advisories/36260 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102888-1 SuSE Security Announcement: SUSE-SA:2007:027 (Google Search) http://www.novell.com/linux/security/advisories/2007_27_x.html SuSE Security Announcement: SUSE-SR:2007:008 (Google Search) http://www.novell.com/linux/security/advisories/2007_8_sr.html http://www.ubuntu.com/usn/usn-453-1 http://www.ubuntu.com/usn/usn-453-2 http://www.ubuntu.com/usn/usn-481-1 http://www.vupen.com/english/advisories/2007/1217 http://www.vupen.com/english/advisories/2007/1531 Common Vulnerability Exposure (CVE) ID: CVE-2007-1797 BugTraq ID: 23252 http://www.securityfocus.com/bid/23252 BugTraq ID: 23347 http://www.securityfocus.com/bid/23347 http://security.gentoo.org/glsa/glsa-200705-13.xml http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=496 http://www.imagemagick.org/script/changelog.php https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9254 http://www.redhat.com/support/errata/RHSA-2008-0145.html http://www.redhat.com/support/errata/RHSA-2008-0165.html http://www.securitytracker.com/id?1017839 http://secunia.com/advisories/24721 http://secunia.com/advisories/25206 http://secunia.com/advisories/29786 http://secunia.com/advisories/29857 http://www.vupen.com/english/advisories/2007/1200 XForce ISS Database: imagemagick-readdcmimage-bo(33376) https://exchange.xforce.ibmcloud.com/vulnerabilities/33376 XForce ISS Database: imagemagick-readxwdimage-bo(33377) https://exchange.xforce.ibmcloud.com/vulnerabilities/33377
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.