|
Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2006:164: xorg-x11 Vulnerability Scan
Vulnerability Scan Summary Check for the version of the xorg-x11 package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2006:164 (xorg-x11).
Local exploitation of an integer overflow vulnerability in the
'CIDAFM()' function in the X.Org and XFree86 X server could allow an
attacker to execute arbitrary code with rights of the X server,
typically root (CVE-2006-3739).
Local exploitation of an integer overflow vulnerability in the
'scan_cidfont()' function in the X.Org and XFree86 X server could allow
a possible hacker to execute arbitrary code with rights of the X server,
typically root (CVE-2006-3740).
Updated packages are patched to address this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:164
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|