 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.51458 |
| Kategorie: | Conectiva Local Security Checks |
| Titel: | Conectiva Security Advisory CLA-2003:737 |
| Zusammenfassung: | NOSUMMARY |
| Beschreibung: | Description: The remote host is missing updates announced in advisory CLA-2003:737. The gtkhtml library is used by Evolution and other Gnome programs to render basic HTML. Evolution is a Gnome-based personal information manager (PIM) which includes e-mail, address book, calendar and other integrated features. Alan Cox discovered two vulnerabilities (CVE-2003-0541[1] and CVE-2003-0133[2]) in the gtkhtml library. These vulnerabilities can be exploited to at least crash programs linked to gtkhtml by using malformed HTML. In the case of Evolution, a remote attacker can use an HTML mail as an attack vector. This update includes fixes for both vulnerabilities. Please note that the second one (CVE-2003-0133) affects only the gtkhtml version distributed with Conectiva Linux 9. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0541 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0133 http://www.securityspace.com/smysecure/catid.html?in=CLA-2003:737 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002003 Risk factor : Medium CVSS Score: 5.0 |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2003-0541 Conectiva Linux advisory: CLA-2003:737 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000737 Debian Security Information: DSA-710 (Google Search) http://www.debian.org/security/2005/dsa-710 http://www.mandriva.com/security/advisories?name=MDKSA-2003:093 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A148 http://www.redhat.com/support/errata/RHSA-2003-264.html Common Vulnerability Exposure (CVE) ID: CVE-2003-0133 http://www.mandriva.com/security/advisories?name=MDKSA-2003:046 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A138 http://www.redhat.com/support/errata/RHSA-2003-126.html |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |