Test Kennung:	1.3.6.1.4.1.25623.1.0.54822
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200501-36 (awstats)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200501-36.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200501-36. Vulnerability Insight: AWStats fails to validate certain input, which could lead to the remote execution of arbitrary code or to the leak of information. Solution: All AWStats users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-www/awstats-6.3-r2' Note: Users with the vhosts USE flag set should manually use webapp-config to finalize the update. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-0116 BugTraq ID: 12298 http://www.securityfocus.com/bid/12298 CERT/CC vulnerability note: VU#272296 http://www.kb.cert.org/vuls/id/272296 http://www.idefense.com/application/poi/display?id=185&type=vulnerabilities&flashstatus=false http://packetstormsecurity.org/0501-exploits/AWStatsVulnAnalysis.pdf http://www.osvdb.org/13002 http://secunia.com/advisories/13893/ Common Vulnerability Exposure (CVE) ID: CVE-2005-0362 http://www.osvdb.org/16089 Common Vulnerability Exposure (CVE) ID: CVE-2005-0363 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=294488 Debian Security Information: DSA-682 (Google Search) http://www.debian.org/security/2005/dsa-682
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.