 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.55109 |
| Kategorie: | Mandrake Local Security Checks |
| Titel: | Mandrake Security Advisory MDKSA-2005:141 (evolution) |
| Zusammenfassung: | NOSUMMARY |
| Beschreibung: | Description: The remote host is missing an update to evolution announced via advisory MDKSA-2005:141. Multiple format string vulnerabilities in Evolution 1.5 through 2.3.6.1 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) full vCard data, (2) contact data from remote LDAP servers, or (3) task list data from remote servers. (CVE-2005-2549) A format string vulnerability in Evolution 1.4 through 2.3.6.1 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the calendar entries such as task lists, which are not properly handled when the user selects the Calendars tab. (CVE-2005-2550) Affected versions: 10.1, 10.2, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2005:141 Risk factor : High CVSS Score: 7.5 |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2005-2549 14532 http://www.securityfocus.com/bid/14532 16394 http://secunia.com/advisories/16394 19380 http://secunia.com/advisories/19380 20050810 Evolution multiple remote format string bugs http://marc.info/?l=full-disclosure&m=112368237712032&w=2 http://www.securityfocus.com/archive/1/407789 DSA-1016 http://www.debian.org/security/2006/dsa-1016 FEDORA-2005-743 http://www.redhat.com/archives/fedora-announce-list/2005-August/msg00031.html MDKSA-2005:141 http://www.mandriva.com/security/advisories?name=MDKSA-2005:141 RHSA-2005:267 http://www.redhat.com/support/errata/RHSA-2005-267.html SUSE-SA:2005:054 http://www.novell.com/linux/security/advisories/2005_54_evolution.html USN-166-1 https://usn.ubuntu.com/166-1/ http://www.sitic.se/eng/advisories_and_recommendations/sa05-001.html oval:org.mitre.oval:def:9553 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9553 Common Vulnerability Exposure (CVE) ID: CVE-2005-2550 oval:org.mitre.oval:def:10880 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10880 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |