Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:014: wine Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the wine package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:014 (wine).
A vulnerability was discovered by H D Moore in Wine which implements the
SETABORTPROC GDI Escape function for Windows Metafile (WMF) files. This could
be abused by a possible hacker who is able to entice a user to open a specially
crafted WMF file from within a Wine-execute Windows application, possibly
resulting in the execution of arbitrary code with the rights of the user
runing Wine. The updated packages have been patched to correct these problems.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:014
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.