Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2006:044: libtiff Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the libtiff package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2006:044 (libtiff).
This update of libtiff is the result of a source-code audit done by
Tavis Ormandy, Google Security Team. It fixes various bugs that can
lead to denial-of-service conditions as well as to remote code execution
while parsing a tiff image provided by a possible hacker.
Solution : http://www.suse.de/security/http://www.novell.com/linux/security/advisories/2006_44_libtiff.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.