Mandriva Update For Ekiga MDKSA-2007:044 (ekiga) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A format string flaw was discovered in how ekiga processes certain messages, which could permit a remote attacker that can connect to ekiga to potentially execute arbitrary code with the privileges of the user running ekiga. Updated package have been patched to correct this issue.

Affected

ekiga on Mandriva Linux 2007.0, Mandriva Linux 2007.0/X86_64

Severity

Classification

CVE CVE-2007-1006
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:015 (ffmpeg)
Mandrake Security Advisory MDVSA-2009:111 (firefox)
Mandrake Security Advisory MDVSA-2009:184 (apache-mod_security)
Mandrake Security Advisory MDVSA-2009:165 (ghostscript)
Mandrake Security Advisory MDVSA-2009:115 (phpMyAdmin)

Mandriva Update for ekiga MDKSA-2007:044 (ekiga)

Take action and discover your vulnerabilities