|
|
Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:007: imlib Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the imlib package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:007 (imlib).
Pavel Kankovsky discovered several heap overflow flaw in the imlib image
handler. A possible hacker could create a carefully crafted image file in such a way
that it could cause an application linked with imlib to execute arbitrary code
when the file was opened by a user (CVE-2004-1025).
As well, Pavel also discovered several integer overflows in imlib. These could
allow a possible hacker, creating a carefully crafted image file, to cause an
application linked with imlib to execute arbitrary code or crash
(CVE-2004-1026).
The updated packages have been patched to prevent these problems.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:007
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
