FrSIRT - Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability

Date de Publication : 2007-11-15 © FrSIRT.COM
Titre : Fedora Security Update Fixes Link Grammar Buffer Overflow Vulnerability
Identifiant : FrSIRT/AVIS-2007-3863
CVE ID : CVE-2007-5395
Risque : Modéré (2/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Une vulnérabilité a été identifiée dans Fedora, elle pourrait être exploitée par des attaquants afin de causer un déni de service ou compromettre un système vulnérable [...]

Solution

Installer les mises à jour :

34ae8c6bf6f45d9ce50694daa6c0761bd589de97 link-grammar-debuginfo-4.2.5-1.fc7.ppc64.rpm
c3feb02b1d679ff8d65e6a8962a276dc41108e37 link-grammar-devel-4.2.5-1.fc7.ppc64.rpm
0875048bc733eaa8612c6aa12eeb02d70386b4eb link-grammar-4.2.5-1.fc7.ppc64.rpm
bd2d0b0e2f10cf194787236a660605f19307fea0 link-grammar-debuginfo-4.2.5-1.fc7.i386.rpm
83aff35a2b3e9d76e1460aff70aad49fe1814280 link-grammar-4.2.5-1.fc7.i386.rpm
c927f211d1cd5679f1815f7137765af320d1172b link-grammar-devel-4.2.5-1.fc7.i386.rpm
4f7ace323dd0f01d87692752dfc01b958588fb1d link-grammar-4.2.5-1.fc7.x86_64.rpm
b60ad4a5d09a8f123de6f5eb3681785da425428c link-grammar-devel-4.2.5-1.fc7.x86_64.rpm
84c486eb1e991e1468ed9ef3eae637a19504a284 link-grammar-debuginfo-4.2.5-1.fc7.x86_64.rpm
92b96df32e56f1b09466fda2cce87367b3dac2b0 link-grammar-4.2.5-1.fc7.ppc.rpm
df6b2cbd6b3cfb4d108765a770d2aae1094742d1 link-grammar-devel-4.2.5-1.fc7.ppc.rpm
654b391ee47b2aa8448a31b0cd0578f82e1385f8 link-grammar-debuginfo-4.2.5-1.fc7.ppc.rpm
8ef3f7da2218084e294f54941ad04854df6dc2b6 link-grammar-4.2.5-1.fc7.src.rpm

Historique

2007-11-15 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Apple Mac OS X Command Execution Vulnerabilities
	Apple Safari for Mac OS X Remote Code Execution Vulnerability
	Apple Mac OS X ARDAgent Local Privilege Escalation Vulnerability
	Apple Safari Code Execution and Information Disclosure Vulnerabilities
	Apple QuickTime Multiple File Handling Code Execution Vulnerabilities
	Apple Safari for Windows Remote Code Execution Vulnerability
	Apple Mac OS X Command Execution Vulnerabilities

	Sun Solaris Tomcat JSP/Servlet Container Multiple Vulnerabilities
	Sun Java System Access Manager XSLT Code Execution Vulnerability
	Sun Solaris 10 Adobe Reader Multiple Code Execution Vulnerabilities
	Sun Solaris "snmpXdmid" Packet Handling Denial of Service Vulnerability
	Sun Solaris FreeType2 Library Multiple Memory Corruption Vulnerabilities
	Sun Java System Calendar Server Denial of Service Vulnerability
	Sun Solaris SMA SNMPv3 Authentication Bypass Vulnerability

	Microsoft Office Word Document Handling Code Execution Vulnerability
	Microsoft SQL Server Privilege Escalation Vulnerabilities (MS08-040)
	Microsoft Exchange Server Cross Site Scripting Issues (MS08-039)
	Microsoft Windows Explorer Remote Code Execution (MS08-038)
	Microsoft Windows Multiple DNS Spoofing Vulnerabilities (MS08-037)
	Microsoft Access Snapshot Viewer ActiveX Control Vulnerability
	Microsoft Internet Explorer Frame Cross-Domain Scripting Vulnerability