Test Kennung:	1.3.6.1.4.1.25623.1.0.54518
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200401-04 (GAIM)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200401-04.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200401-04. Vulnerability Insight: Various overflows in the handling of AIM DirectIM packets was revealed in GAIM that could lead to a remote compromise of the IM client. Solution: All users are recommended to upgrade GAIM to 0.75-r7. $> emerge sync $> emerge -pv '>=net-im/gaim-0.75-r7' $> emerge '>=net-im/gaim-0.75-r7' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0005 Bugtraq: 20040126 Advisory 01/2004: 12 x Gaim remote overflows (Google Search) http://marc.info/?l=bugtraq&m=107513690306318&w=2 CERT/CC vulnerability note: VU#190366 http://www.kb.cert.org/vuls/id/190366 CERT/CC vulnerability note: VU#226974 http://www.kb.cert.org/vuls/id/226974 CERT/CC vulnerability note: VU#404470 http://www.kb.cert.org/vuls/id/404470 CERT/CC vulnerability note: VU#655974 http://www.kb.cert.org/vuls/id/655974 Conectiva Linux advisory: CLA-2004:813 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000813 Debian Security Information: DSA-434 (Google Search) http://www.debian.org/security/2004/dsa-434 http://archives.neohapsis.com/archives/fulldisclosure/2004-01/0994.html https://security.gentoo.org/glsa/200401-04 http://security.e-matters.de/advisories/012004.html http://www.osvdb.org/3736 http://www.securitytracker.com/id?1008850 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.361158 SuSE Security Announcement: SuSE-SA:2004:004 (Google Search) http://www.novell.com/linux/security/advisories/2004_04_gaim.html XForce ISS Database: gaim-mime-decoder-bo(14942) https://exchange.xforce.ibmcloud.com/vulnerabilities/14942 XForce ISS Database: gaim-mime-decoder-oob(14944) https://exchange.xforce.ibmcloud.com/vulnerabilities/14944 XForce ISS Database: gaim-sscanf-oob(14938) https://exchange.xforce.ibmcloud.com/vulnerabilities/14938 XForce ISS Database: gaim-yahoodecode-offbyone-bo(14935) https://exchange.xforce.ibmcloud.com/vulnerabilities/14935 Common Vulnerability Exposure (CVE) ID: CVE-2004-0006 BugTraq ID: 9489 http://www.securityfocus.com/bid/9489 Bugtraq: 20040127 Ultramagnetic Advisory #001: Multiple vulnerabilities in Gaim code (Google Search) http://marc.info/?l=bugtraq&m=107522432613022&w=2 CERT/CC vulnerability note: VU#297198 http://www.kb.cert.org/vuls/id/297198 CERT/CC vulnerability note: VU#371382 http://www.kb.cert.org/vuls/id/371382 CERT/CC vulnerability note: VU#444158 http://www.kb.cert.org/vuls/id/444158 CERT/CC vulnerability note: VU#503030 http://www.kb.cert.org/vuls/id/503030 CERT/CC vulnerability note: VU#527142 http://www.kb.cert.org/vuls/id/527142 CERT/CC vulnerability note: VU#871838 http://www.kb.cert.org/vuls/id/871838 http://security.gentoo.org/glsa/glsa-200401-04.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:006 http://www.osvdb.org/3731 http://www.osvdb.org/3732 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10222 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A818 http://www.redhat.com/support/errata/RHSA-2004-032.html http://www.redhat.com/support/errata/RHSA-2004-033.html http://www.redhat.com/support/errata/RHSA-2004-045.html SGI Security Advisory: 20040201-01-U ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc SGI Security Advisory: 20040202-01-U ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc XForce ISS Database: gaim-http-proxy-bo(14947) https://exchange.xforce.ibmcloud.com/vulnerabilities/14947 XForce ISS Database: gaim-login-name-bo(14940) https://exchange.xforce.ibmcloud.com/vulnerabilities/14940 XForce ISS Database: gaim-login-value-bo(14941) https://exchange.xforce.ibmcloud.com/vulnerabilities/14941 XForce ISS Database: gaim-urlparser-bo(14945) https://exchange.xforce.ibmcloud.com/vulnerabilities/14945 XForce ISS Database: gaim-yahoopacketread-keyname-bo(14943) https://exchange.xforce.ibmcloud.com/vulnerabilities/14943 XForce ISS Database: gaim-yahoowebpending-cookie-bo(14939) https://exchange.xforce.ibmcloud.com/vulnerabilities/14939 Common Vulnerability Exposure (CVE) ID: CVE-2004-0007 CERT/CC vulnerability note: VU#197142 http://www.kb.cert.org/vuls/id/197142 http://www.osvdb.org/3733 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A819 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9906 http://www.securityfocus.com/advisories/6281 XForce ISS Database: gaim-extractinfo-bo(14946) https://exchange.xforce.ibmcloud.com/vulnerabilities/14946 Common Vulnerability Exposure (CVE) ID: CVE-2004-0008 Bugtraq: 20040127 [slackware-security] GAIM security update (SSA:2004-026-01) (Google Search) http://marc.info/?l=bugtraq&m=107522338611564&w=2 CERT/CC vulnerability note: VU#779614 http://www.kb.cert.org/vuls/id/779614 http://www.osvdb.org/3734 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A820 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9469 XForce ISS Database: gaim-directim-bo(14937) https://exchange.xforce.ibmcloud.com/vulnerabilities/14937
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.