FreeBSD Ports: Dia, Dia-gnome Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://secunia.com/advisories/19469/ http://mail.gnome.org/archives/dia-list/2006-March/msg00149.html http://www.vuxml.org/freebsd/b5fc63ad-c4c3-11da-9699-00123ffe8333.html

Insight

The following packages are affected: dia dia-gnome CVE-2006-1550 Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-complicit attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.

Severity

Classification

CVE CVE-2006-1550
CVSS Base Score: 7.6
AV:N/AC:H/Au:N/C:C/I:C/A:C

Related Vulnerabilities

FreeBSD Ports: chromium
FreeBSD Ports: chromium
FreeBSD Ports: cfs
FreeBSD Ports: bidwatcher
FreeBSD Ports: apache, apache-event, apache-itk, apache-peruser, apache-worker

FreeBSD Ports: dia, dia-gnome

Take action and discover your vulnerabilities