Test Kennung:	1.3.6.1.4.1.25623.1.0.54752
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200411-31 (ProZilla)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200411-31.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200411-31. Vulnerability Insight: ProZilla contains several buffer overflow vulnerabilities that can be exploited by a malicious server to execute arbitrary code with the rights of the user running ProZilla. Solution: Currently, there is no released version of ProZilla that contains a fix for these issues. The original author did not respond to our queries, the code contains several other problems and more secure alternatives exist. Therefore, the ProZilla package has been hard-masked prior to complete removal from Portage, and current users are advised to unmerge the package. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1120 BugTraq ID: 11734 http://www.securityfocus.com/bid/11734 Bugtraq: 20041124 Prozilla Remote Exploit (Google Search) http://www.securityfocus.com/archive/1/382219 Debian Security Information: DSA-663 (Google Search) http://www.debian.org/security/2005/dsa-663 http://www.gentoo.org/security/en/glsa/glsa-200411-31.xml XForce ISS Database: prozilla-bo(18210) https://exchange.xforce.ibmcloud.com/vulnerabilities/18210
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.