This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote Mandriva Linux host is missing one or more security
Multiple security vulnerabilities has been identified and fixed in
Multiple integer overflows in JasPer 1.900.1 might allow
context-dependent attackers to have an unknown impact via a crafted
image file, related to integer multiplication for memory allocation
Buffer overflow in the jas_stream_printf function in
libjasper/base/jas_stream.c in JasPer 1.900.1 might allow
context-dependent attackers to have an unknown impact via vectors
related to the mif_hdr_put function and use of vsprintf
pamperspective in Netpbm before 10.35.48 does not properly calculate a
window height, which allows context-dependent attackers to cause a
denial of service (crash) via a crafted image file that triggers an
out-of-bounds read (CVE-2008-4799).
Packages for 2008.0 are provided for Corporate Desktop 2008.0
This update fixes this vulnerability.
Update the affected packages.
Risk factor :
Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.7
Public Exploit Available : false
Family: Mandriva Local Security Checks
Nessus Plugin ID: 43020 (mandriva_MDVSA-2009-317.nasl)
Bugtraq ID: 31470
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now