|
Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2007:005: xorg-x11 Vulnerability Scan
Vulnerability Scan Summary Check for the version of the xorg-x11 package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2007:005 (xorg-x11).
Sean Larsson of iDefense Labs discovered several vulnerabilities in
X.Org/XFree86:
Local exploitation of a memory corruption vulnerability in the
'ProcRenderAddGlyphs()' function in the X.Org and XFree86 X server
could allow a possible hacker to execute arbitrary code with rights of
the X server, typically root. (CVE-2006-6101)
Local exploitation of a memory corruption vulnerability in the
'ProcDbeGetVisualInfo()' function in the X.Org and XFree86 X server
could allow a possible hacker to execute arbitrary code with rights of
the X server, typically root. (CVE-2006-6102)
Local exploitation of a memory corruption vulnerability in the
'ProcDbeSwapBuffers()' function in the X.Org and XFree86 X server could
allow a possible hacker to execute arbitrary code with rights of the X
server, typically root. (CVE-2006-6103)
Updated packages are patched to address these issues.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:005
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|