 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.50640 |
| Kategorie: | Mandrake Local Security Checks |
| Titel: | Mandrake Security Advisory MDKSA-2004:003 (kdepim) |
| Zusammenfassung: | NOSUMMARY |
| Beschreibung: | Description: The remote host is missing an update to kdepim announced via advisory MDKSA-2004:003. A vulnerability was discovered in all versions of kdepim as distributed with KDE versions 3.1.0 through 3.1.4. This vulnerability allows for a carefully crafted .VCF file to potentially enable a local attacker to compromise the privacy of a victim's data or execute arbitrary commands with the victim's privileges. This can also be used by remote attackers if the victim enables previews for remote files however this is disabled by default. The provided packages contain a patch from the KDE team to correct this problem. Affected versions: 9.1, 9.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2004:003 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0988 Risk factor : High CVSS Score: 7.5 |
| Querverweis: |
BugTraq ID: 9419 Common Vulnerability Exposure (CVE) ID: CVE-2003-0988 http://www.securityfocus.com/bid/9419 Bugtraq: 20040114 KDE Security Advisory: VCF file information reader vulnerability (Google Search) http://marc.info/?l=bugtraq&m=107412130407906&w=2 CERT/CC vulnerability note: VU#820798 http://www.kb.cert.org/vuls/id/820798 Conectiva Linux advisory: CLA-2004:810 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000810 http://security.gentoo.org/glsa/glsa-200404-02.xml http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:003 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A858 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A865 http://www.redhat.com/support/errata/RHSA-2004-005.html http://www.redhat.com/support/errata/RHSA-2004-006.html XForce ISS Database: kde-kdepim-bo(14833) https://exchange.xforce.ibmcloud.com/vulnerabilities/14833 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |