Vulnerability Bulletins |
Desbordamiento de búfer en Bomberclone |
|
Vulnerability classification |
|
| Property | Value |
| Confidence level | Oficial |
| Impact | Obtener acceso |
| Dificulty | Experto |
| Required attacker level | Acceso remoto sin cuenta a un servicio exotico |
System information |
|
| Property | Value |
| Affected manufacturer | GNU/Linux |
| Affected software | Bomberclone |
Description |
|
|
Se ha descubierto una vulnerabilidad de tipo desbordamiento de búfer en bomberclone. La vulnerabilidad reside en el manejo de cierto tipo de paquetes de error. Un atacante remoto podría causar una denegación de servicio o ejecutar código arbitrario mediante paquetes de error especialmente diseñados. |
|
Solution |
|
|
Actualización de software Debian Debian Linux 3.1 Source http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1.dsc http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1.diff.gz http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5.orig.tar.gz Architecture independent http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone-data_0.11.5-1sarge1_all.deb Alpha http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_alpha.deb AMD64 http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_amd64.deb ARM http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_arm.deb Intel IA-32 http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_i386.deb Intel IA-64 http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_ia64.deb HP Precision http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_hppa.deb Motorola 680x0 http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_m68k.deb Big endian MIPS http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_mips.deb Little endian MIPS http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_mipsel.deb PowerPC http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_powerpc.deb IBM S/390 http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_s390.deb Sun Sparc http://security.debian.org/pool/updates/main/b/bomberclone/bomberclone_0.11.5-1sarge1_sparc.deb |
|
Standar resources |
|
| Property | Value |
| CVE | CVE-2006-0460 |
| BID | |
Other resources |
|
|
Debian Security Advisory (DSA 997-1) http://lists.debian.org/debian-security-announce/debian-security-announce-2006/msg00077.html |
|
Version history |
||
| Version | Comments | Date |
| 1.0 | Aviso emitido | 2006-03-14 |