Test Kennung:	1.3.6.1.4.1.25623.1.0.57894
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200609-16 (tikiwiki)
Zusammenfassung:	The remote host is missing updates announced in;advisory GLSA 200609-16.
Beschreibung:	Summary: The remote host is missing updates announced in advisory GLSA 200609-16. Vulnerability Insight: Tikiwiki contains a cross-site scripting (XSS) vulnerability as well as a second vulnerability which may allow remote execution of arbitrary code. Solution: All Tikiwiki users should upgrade to the latest version: # emerge --sync # emerge --oneshot --verbose --ask '>=www-apps/tikiwiki-1.9.5' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4299 BugTraq ID: 19654 http://www.securityfocus.com/bid/19654 http://security.gentoo.org/glsa/glsa-200609-16.xml http://www.osvdb.org/28071 http://secunia.com/advisories/21536 http://secunia.com/advisories/22100 http://www.vupen.com/english/advisories/2006/3351 XForce ISS Database: tikiwiki-search-xss(28498) https://exchange.xforce.ibmcloud.com/vulnerabilities/28498 Common Vulnerability Exposure (CVE) ID: CVE-2006-4602 BugTraq ID: 19819 http://www.securityfocus.com/bid/19819 https://www.exploit-db.com/exploits/2288 http://isc.sans.org/diary.php?storyid=1672 http://www.osvdb.org/28456 http://secunia.com/advisories/21733 http://www.vupen.com/english/advisories/2006/3450
Copyright	Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.