Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.57227
Kategorie:Turbolinux Local Security Tests
Titel:Turbolinux TLSA-2006-3 (kdelibs)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is missing an update to kdelibs
announced via advisory TLSA-2006-3.

Kdelibs are main libraries for the K Desktop Environment.
The JavaScript interpreter engine used by Konqueror and other
parts of KDE, that allows a heap based buffer overflow
when decoding specially crafted UTF-8 encoded URI sequences.

Remotely supplied Javascript code can perform a heap overflow
and crash the web browser or execute arbitrary code.

Solution: Please use the turbopkg (zabom) tool to apply the update.
https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2006-3

Risk factor : High

Querverweis: Common Vulnerability Exposure (CVE) ID: CAN-2006-0019
BugTraq ID: 16325
http://www.securityfocus.com/bid/16325
Bugtraq: 20060119 [KDE Security Advisory] kjs encodeuri/decodeuri heap overflow (Google Search)
http://www.securityfocus.com/archive/1/422464/100/0/threaded
Debian Security Information: DSA-948 (Google Search)
http://www.debian.org/security/2006/dsa-948
http://www.securityfocus.com/archive/1/427976/100/0/threaded
http://www.gentoo.org/security/en/glsa/glsa-200601-11.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:019
http://www.osvdb.org/22659
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11858
http://www.redhat.com/support/errata/RHSA-2006-0184.html
http://securitytracker.com/id?1015512
http://secunia.com/advisories/18500
http://secunia.com/advisories/18540
http://secunia.com/advisories/18552
http://secunia.com/advisories/18559
http://secunia.com/advisories/18561
http://secunia.com/advisories/18570
http://secunia.com/advisories/18583
http://secunia.com/advisories/18899
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.361107
http://securityreason.com/securityalert/364
SuSE Security Announcement: SUSE-SA:2006:003 (Google Search)
http://www.securityfocus.com/archive/1/422489/100/0/threaded
http://www.ubuntu.com/usn/usn-245-1
http://www.vupen.com/english/advisories/2006/0265
XForce ISS Database: kde-kjs-bo(24242)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24242
CopyrightCopyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.