English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.52876
Kategorie:Turbolinux Local Security Tests
Titel:Turbolinux TLSA-2004-3 (tcpdump)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is missing an update to tcpdump
announced via advisory TLSA-2004-3.

Tcpdump is a tool designed to prints out the headers of packets on a network interface.
The buffer overflow vulnerabilities were discovered in the ISAKMP and RADIUS
decoding routines of tcpdump.

Remote attackers could potentially exploit these issues by sending
carefully-crafted packets to a victim.

Solution: Please use the turbopkg (zabom) tool to apply the update.
http://www.securityspace.com/smysecure/catid.html?in=TLSA-2004-3

Risk factor : High

CVSS Score:
7.5

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2003-0989
http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html
BugTraq ID: 9507
http://www.securityfocus.com/bid/9507
Bugtraq: 20040119 [ESA-20040119-002] 'tcpdump' multiple vulnerabilities. (Google Search)
http://www.securityfocus.com/archive/1/350238/30/21640/threaded
Bugtraq: 20040131 [FLSA-2004:1222] Updated tcpdump resolves security vulnerabilites (resend with correct paths) (Google Search)
http://marc.info/?l=bugtraq&m=107577418225627&w=2
Caldera Security Advisory: CSSA-2004-008.0
ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2004-008.0.txt
CERT/CC vulnerability note: VU#738518
http://www.kb.cert.org/vuls/id/738518
Debian Security Information: DSA-425 (Google Search)
http://www.debian.org/security/2004/dsa-425
En Garde Linux Advisory: ESA-20040119-002
http://lwn.net/Alerts/66805/
http://www.redhat.com/archives/fedora-announce-list/2004-March/msg00006.html
http://www.redhat.com/archives/fedora-announce-list/2004-March/msg00009.html
http://www.redhat.com/archives/fedora-legacy-list/2004-January/msg00726.html
http://www.mandriva.com/security/advisories?name=MDKSA-2004:008
http://www.redhat.com/archives/fedora-announce-list/2004-March/msg00015.html
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10599
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A847
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A852
http://www.redhat.com/support/errata/RHSA-2004-007.html
http://www.redhat.com/support/errata/RHSA-2004-008.html
SCO Security Bulletin: SCOSA-2004.9
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.9/SCOSA-2004.9.txt
http://www.securitytracker.com/id?1008716
http://secunia.com/advisories/10636
http://secunia.com/advisories/10637
http://secunia.com/advisories/10639
http://secunia.com/advisories/10644
http://secunia.com/advisories/10652
http://secunia.com/advisories/10668
http://secunia.com/advisories/10718
http://secunia.com/advisories/11022
http://secunia.com/advisories/11032/
http://secunia.com/advisories/12179/
SGI Security Advisory: 20040103-01-U
ftp://patches.sgi.com/support/free/security/advisories/20040103-01-U.asc
SGI Security Advisory: 20040202-01-U
ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
SuSE Security Announcement: SuSE-SA:2004:002 (Google Search)
http://lwn.net/Alerts/66445/
Common Vulnerability Exposure (CVE) ID: CVE-2004-0055
BugTraq ID: 7090
http://www.securityfocus.com/bid/7090
CERT/CC vulnerability note: VU#955526
http://www.kb.cert.org/vuls/id/955526
Conectiva Linux advisory: CLSA-2003:832
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000832
http://marc.info/?l=tcpdump-workers&m=107325073018070&w=2
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A850
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A853
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9989
http://www.securitytracker.com/id?1008735
Common Vulnerability Exposure (CVE) ID: CVE-2004-0057
BugTraq ID: 9423
http://www.securityfocus.com/bid/9423
CERT/CC vulnerability note: VU#174086
http://www.kb.cert.org/vuls/id/174086
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11197
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A851
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A854
XForce ISS Database: tcpdump-rawprint-isakmp-dos(14837)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14837
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.