FrSIRT - Fedora Security Update Fixes Wesnoth WML Directory Traversal Issue / Exploit

French Security Incident Response Team

Français

English

Fedora Security Update Fixes Wesnoth WML Directory Traversal Issue

Date de Publication : 2007-12-04 © FrSIRT.COM
Titre : Fedora Security Update Fixes Wesnoth WML Directory Traversal Issue
Identifiant : FrSIRT/AVIS-2007-4080
CVE ID : CVE-2007-5742
Risque : Modéré (2/4) -

Exploitable à distance : Oui
Exploitable en local : Oui

En savoir plus

Description

Produits affectés

Solution

Références

Description Technique

Une vulnérabilité a été identifiée dans Fedora, elle pourrait être exploitée par des attaquants afin d'obtenir des informations sensibles [...]

Solution

Installer les mises à jour :

8a79e4cbd5476d168aff26ad9925037d45a7de75 wesnoth-1.2.8-2.fc7.ppc64.rpm
c88376bcbe61d6876939566f23ae2c1713ddf81c wesnoth-debuginfo-1.2.8-2.fc7.ppc64.rpm
f0685889b521fa36038efb78494c46e6e988f440 wesnoth-tools-1.2.8-2.fc7.ppc64.rpm
879926e777a32ab2508caff125b61d48a8a80c49 wesnoth-server-1.2.8-2.fc7.ppc64.rpm
1a2ed1afc75a410b38b6b079a79c2050ff0e1401 wesnoth-tools-1.2.8-2.fc7.i386.rpm
35307a97ec77a65fdf0382b650f74afd81a8eee1 wesnoth-debuginfo-1.2.8-2.fc7.i386.rpm
7ad05b4f5b1e6eda55d08b0af9a47de56404ad65 wesnoth-server-1.2.8-2.fc7.i386.rpm
0474082fa4d8a9676db26791fb4e4ac8d683c589 wesnoth-1.2.8-2.fc7.i386.rpm
c884be9ad51e26316e77703a39fe3120b96967c2 wesnoth-debuginfo-1.2.8-2.fc7.x86_64.rpm
7e9f5d2de8803325f528e7580e9f234a81c28f7c wesnoth-tools-1.2.8-2.fc7.x86_64.rpm
ecd129bc88f0600b8a6e223eb88872cec894ec07 wesnoth-1.2.8-2.fc7.x86_64.rpm
c447a4c258eb5d9b6043b9e4ca490e88a62fa1cc wesnoth-server-1.2.8-2.fc7.x86_64.rpm
9e87e04252f7a31c832e3038762776c3dccc5430 wesnoth-tools-1.2.8-2.fc7.ppc.rpm
e8fb513a19903533fb3b99af85b7f9eb3524b476 wesnoth-server-1.2.8-2.fc7.ppc.rpm
5e8697a3f65b2ce113dd51a505e2025c90ef5999 wesnoth-1.2.8-2.fc7.ppc.rpm
539948d28d45b60df37082896d1c5fb3b9b1bbc1 wesnoth-debuginfo-1.2.8-2.fc7.ppc.rpm
f7de361fea0220732eac9d018090f5bc52aa7264 wesnoth-1.2.8-2.fc7.src.rpm

6f916998475b66b99309800acd229552d0573dea wesnoth-server-1.2.8-2.fc8.ppc64.rpm
4e46ad14203beb4d718a6742b88ed424c8480bd9 wesnoth-1.2.8-2.fc8.ppc64.rpm
f6deb833ae98139184e6925e253bef54d5b5b2ef wesnoth-tools-1.2.8-2.fc8.ppc64.rpm
b58935fbc0e83dbf164624c446c22f362d87b167 wesnoth-debuginfo-1.2.8-2.fc8.ppc64.rpm
de706c26e2e00e1a9feb433791d580ac27f2156c wesnoth-debuginfo-1.2.8-2.fc8.i386.rpm
c1e190224a92b89e763ef92c563708b8db15c299 wesnoth-server-1.2.8-2.fc8.i386.rpm
08562bcb4f9db36ae64dcb8f29db89d50d4636e9 wesnoth-tools-1.2.8-2.fc8.i386.rpm
e72d5956de78cd853149baa0737d53daf03a638d wesnoth-1.2.8-2.fc8.i386.rpm
b6db61acf07d8d19ce840be4b2f4bcb3eddc9367 wesnoth-server-1.2.8-2.fc8.x86_64.rpm
aeb291269dfec77d45c1a2907b5b8f5a8dc1a517 wesnoth-debuginfo-1.2.8-2.fc8.x86_64.rpm
956feb61d1099a51b46623e986682952bd6c1248 wesnoth-1.2.8-2.fc8.x86_64.rpm
ce38c2cd49fbb07eaa0617ae40a99398b231e1da wesnoth-tools-1.2.8-2.fc8.x86_64.rpm
02f53f427ece4d5650a07cb46e12071de2e8ef2e wesnoth-1.2.8-2.fc8.ppc.rpm
81f8454ff7374d468a2c7205416dbe1a6e8d7d00 wesnoth-debuginfo-1.2.8-2.fc8.ppc.rpm
804e5a7d92ac62556486ad1279e38ee5ef664fe5 wesnoth-server-1.2.8-2.fc8.ppc.rpm
31b6f8180a7c6b0ee9e454d7fb3f6842b7df22dc wesnoth-tools-1.2.8-2.fc8.ppc.rpm
093878597f6659cce86cc6783253775ce80b6c99 wesnoth-1.2.8-2.fc8.src.rpm

Historique

2007-12-04 : Version Initiale

Recevez les bulletins FrSIRT

Le service FrSIRT VNS permet aux professionnels de la sécurité (RSSI, DSI, administrateurs et consultants) de recevoir en temps-réel, par email, SMS et flux RSS/XML, des bulletins de vulnérabilités complets, détaillés et personnalisés.

Recherche

Newsletter

	Mozilla Firefox for Mac OS X GIF Rendering Code Execution Vulnerability
	Mozilla Products Remote Code Execution Vulnerabilities
	Mozilla Products Code Execution and Injection Vulnerabilities
	Mozilla JavaScript Garbage Collector Code Execution Vulnerability
	Mozilla Thunderbird Code Execution and Cross Site Scripting Issues
	Mozilla Firefox and SeaMonkey Multiple Remote Code Execution Issues
	Mozilla Thunderbird Multiple Security Bypass and Code Execution Issues

	Sun Solaris Covert Channel Local Security Bypass Vulnerability
	Sun Solaris NFS RPC Zone Denial of Service Vulnerability
	Sun Solaris NFS Kernel Module Local Denial of Service Vulnerability
	Sun Solaris NFSv4 Client Kernel Module Denial of Service Vulnerability
	Sun Java System Portal Server Cross Site Scripting Vulnerability
	Sun rdesktop Code Execution and Denial of Service
	Sun Java System Web Proxy Server Denial of Service Vulnerability

	Cisco PIX and ASA Information Disclosure and DoS Vulnerabilities
	Cisco Secure ACS EAP Remote Denial Of Service Vulnerability
	Cisco Products Remote DNS Cache Poisoning Vulnerability
	Cisco Wide Area Application Services CUPS Remote Vulnerability
	Cisco UCM Denial of Service and Authentication Bypass Vulnerabilities
	Cisco Intrusion Prevention System Jumbo Frame Vulnerability
	Cisco VPN Client Deterministic Network Enhancer Privilege Escalation