Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200407-14 (Unreal Tournament)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.54621

Kategorie: Gentoo Local Security Checks

Titel: Gentoo Security Advisory GLSA 200407-14 (Unreal Tournament)

Zusammenfassung: The remote host is missing updates announced in;advisory GLSA 200407-14.

Beschreibung: Summary:
The remote host is missing updates announced in
advisory GLSA 200407-14.

Vulnerability Insight:
Game servers based on the Unreal engine are vulnerable to remote code
execution through malformed 'secure' queries.

Solution:
All Unreal Tournament users should upgrade to the latest available
versions:

# emerge sync

# emerge -pv '>=games-fps/ut2003-2225-r3'
# emerge '>=games-fps/ut2003-2225-r3'

# emerge -pv '>=games-server/ut2003-ded-2225-r2'
# emerge '>=games-server/ut2003-ded-2225-r2'

# emerge -pv '>=games-fps/ut2004-3236'
# emerge '>=games-fps/ut2004-3236'

# emerge -pv '>=games-fps/ut2004-demo-3120-r4'
# emerge '>=games-fps/ut2004-demo-3120-r4'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2004-0608
BugTraq ID: 10570
http://www.securityfocus.com/bid/10570
Bugtraq: 20040618 Code execution in the Unreal Engine through \secure\ packet (Google Search)
http://marc.info/?l=bugtraq&m=108787105023304&w=2
http://www.gentoo.org/security/en/glsa/glsa-200407-14.xml
http://aluigi.altervista.org/adv/unsecure-adv.txt
XForce ISS Database: unreal-secure-query-command-execute(16451)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16451

Copyright Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.54621
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200407-14 (Unreal Tournament)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200407-14.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200407-14. Vulnerability Insight: Game servers based on the Unreal engine are vulnerable to remote code execution through malformed 'secure' queries. Solution: All Unreal Tournament users should upgrade to the latest available versions: # emerge sync # emerge -pv '>=games-fps/ut2003-2225-r3' # emerge '>=games-fps/ut2003-2225-r3' # emerge -pv '>=games-server/ut2003-ded-2225-r2' # emerge '>=games-server/ut2003-ded-2225-r2' # emerge -pv '>=games-fps/ut2004-3236' # emerge '>=games-fps/ut2004-3236' # emerge -pv '>=games-fps/ut2004-demo-3120-r4' # emerge '>=games-fps/ut2004-demo-3120-r4' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0608 BugTraq ID: 10570 http://www.securityfocus.com/bid/10570 Bugtraq: 20040618 Code execution in the Unreal Engine through \secure\ packet (Google Search) http://marc.info/?l=bugtraq&m=108787105023304&w=2 http://www.gentoo.org/security/en/glsa/glsa-200407-14.xml http://aluigi.altervista.org/adv/unsecure-adv.txt XForce ISS Database: unreal-secure-query-command-execute(16451) https://exchange.xforce.ibmcloud.com/vulnerabilities/16451
Copyright	Copyright (C) 2008 E-Soft Inc.