Test Kennung:	1.3.6.1.4.1.25623.1.0.901142
Kategorie:	Denial of Service
Titel:	FreeType Multiple denial of service vulnerabilities (Windows)
Zusammenfassung:	This host is installed with FreeType and is prone to multiple Denial; of Service vulnerabilities.
Beschreibung:	Summary: This host is installed with FreeType and is prone to multiple Denial of Service vulnerabilities. Vulnerability Insight: - Buffer overflow error in the 'Mac_Read_POST_Resource()' [src/base/ftobjs.c] function when processing Adobe Type 1 Mac Font File (LWFN) fonts. - Errors related to the bdf/bdflib.c, t42_parse_sfnts function in type42/t42parse.c, FT_Stream_EnterFrame function in base/ftstream.c, ftmulti.c in the ftmulti demo program and to the 'BOUNDS' macro when processing fonts. Vulnerability Impact: Successful exploitation may allow attackers to execute arbitrary code in the context of an application that uses the affected library. Failed exploitation attempts will likely result in denial-of-service conditions. Affected Software/OS: FreeType version 2.4.1 and prior. Solution: Upgrade to FreeType version 2.4.2 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	BugTraq ID: 42285 Common Vulnerability Exposure (CVE) ID: CVE-2010-3053 http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html http://secunia.com/advisories/42314 http://secunia.com/advisories/42317 http://secunia.com/advisories/48951 SuSE Security Announcement: SUSE-SR:2010:019 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html http://www.vupen.com/english/advisories/2010/3045 http://www.vupen.com/english/advisories/2010/3046 Common Vulnerability Exposure (CVE) ID: CVE-2010-2808 http://www.securityfocus.com/bid/42285 http://marc.info/?l=oss-security&m=128110167119337&w=2 http://marc.info/?l=oss-security&m=128111955616772&w=2 RedHat Security Advisories: RHSA-2010:0737 https://rhn.redhat.com/errata/RHSA-2010-0737.html http://www.redhat.com/support/errata/RHSA-2010-0864.html http://secunia.com/advisories/40816 http://secunia.com/advisories/40982 http://www.ubuntu.com/usn/USN-972-1 http://www.vupen.com/english/advisories/2010/2018 http://www.vupen.com/english/advisories/2010/2106 Common Vulnerability Exposure (CVE) ID: CVE-2010-2807 Common Vulnerability Exposure (CVE) ID: CVE-2010-2806 RedHat Security Advisories: RHSA-2010:0736 https://rhn.redhat.com/errata/RHSA-2010-0736.html Common Vulnerability Exposure (CVE) ID: CVE-2010-2805 Common Vulnerability Exposure (CVE) ID: CVE-2010-2541 http://www.redhat.com/support/errata/RHSA-2010-0577.html http://www.redhat.com/support/errata/RHSA-2010-0578.html http://securitytracker.com/id?1024266
Copyright	Copyright (C) 2010 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.