Test Kennung:	1.3.6.1.4.1.25623.1.0.54557
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200404-18 (ssmtp)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200404-18.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200404-18. Vulnerability Insight: There are multiple format string vulnerabilities in the SSMTP package, which may allow an attacker to run arbitrary code with ssmtp's privileges (potentially root). Solution: All users are advised to upgrade to the latest available version of ssmtp. # emerge sync # emerge -pv '>=net-mail/ssmtp-2.60.7' # emerge '>=net-mail/ssmtp-2.60.7' CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0156 BugTraq ID: 10150 http://www.securityfocus.com/bid/10150 Bugtraq: 20040507 [OpenPKG-SA-2004.020] OpenPKG Security Advisory (ssmtp) (Google Search) http://marc.info/?l=bugtraq&m=108403772130855&w=2 Debian Security Information: DSA-485 (Google Search) http://www.debian.org/security/2004/dsa-485 http://security.gentoo.org/glsa/glsa-200404-18.xml http://www.osvdb.org/5360 http://www.osvdb.org/5361 http://securitytracker.com/id?1009788 http://secunia.com/advisories/11378 http://secunia.com/advisories/11384 http://secunia.com/advisories/11485 http://secunia.com/advisories/11571 XForce ISS Database: ssmtp-die-logevent-format-string(15872) https://exchange.xforce.ibmcloud.com/vulnerabilities/15872
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.