Test Kennung:	1.3.6.1.4.1.25623.1.0.66420
Kategorie:	Mandrake Local Security Checks
Titel:	Mandriva Security Advisory MDVSA-2009:324 (php)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to php announced via advisory MDVSA-2009:324. For details on the issues addressed with this update, please visit the referenced security advisories. Packages for 2008.0 are being provided due to extended support for Corporate products. This update provides a solution to these vulnerabilities. Affected: 2008.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2009:324 CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2008-7068 Bugtraq: 20081127 SecurityReason : PHP 5.2.6 dba_replace() destroying file (Google Search) http://www.securityfocus.com/archive/1/498746/100/0/threaded Bugtraq: 20081206 Re: SecurityReason : PHP 5.2.6 dba_replace() destroying file (Google Search) http://www.securityfocus.com/archive/1/498981/100/0/threaded http://www.securityfocus.com/archive/1/498982/100/0/threaded http://www.osvdb.org/52206 http://securityreason.com/achievement_securityalert/58 XForce ISS Database: php-dbareplace-file-corruption(47316) https://exchange.xforce.ibmcloud.com/vulnerabilities/47316 Common Vulnerability Exposure (CVE) ID: CVE-2009-1271 http://lists.apple.com/archives/security-announce/2009/Sep/msg00004.html Debian Security Information: DSA-1775 (Google Search) http://www.debian.org/security/2009/dsa-1775 Debian Security Information: DSA-1789 (Google Search) http://www.debian.org/security/2009/dsa-1789 https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01451.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01465.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:090 http://cvs.php.net/viewvc.cgi/php-src/ext/json/JSON_parser.c?r1=1.1.2.14&r2=1.1.2.15 http://www.openwall.com/lists/oss-security/2009/04/01/9 http://www.redhat.com/support/errata/RHSA-2009-0350.html http://secunia.com/advisories/34770 http://secunia.com/advisories/34830 http://secunia.com/advisories/34933 http://secunia.com/advisories/35003 http://secunia.com/advisories/35007 http://secunia.com/advisories/35306 http://secunia.com/advisories/35685 http://secunia.com/advisories/36701 SuSE Security Announcement: SUSE-SR:2009:012 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html https://usn.ubuntu.com/761-1/ http://www.ubuntu.com/usn/USN-761-2 Common Vulnerability Exposure (CVE) ID: CVE-2009-2687 BugTraq ID: 35440 http://www.securityfocus.com/bid/35440 Debian Security Information: DSA-1940 (Google Search) http://www.debian.org/security/2009/dsa-1940 HPdes Security Advisory: HPSBUX02543 http://marc.info/?l=bugtraq&m=127680701405735&w=2 HPdes Security Advisory: SSRT100152 http://www.mandriva.com/security/advisories?name=MDVSA-2009:145 http://www.mandriva.com/security/advisories?name=MDVSA-2009:167 http://osvdb.org/55222 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10695 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6655 http://secunia.com/advisories/35441 http://secunia.com/advisories/36462 http://secunia.com/advisories/37482 http://secunia.com/advisories/40262 SuSE Security Announcement: SUSE-SR:2009:017 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-10/msg00004.html https://usn.ubuntu.com/824-1/ http://www.vupen.com/english/advisories/2009/1632 XForce ISS Database: php-exifreaddata-dos(51253) https://exchange.xforce.ibmcloud.com/vulnerabilities/51253 Common Vulnerability Exposure (CVE) ID: CVE-2009-3291 http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html HPdes Security Advisory: HPSBOV02683 http://marc.info/?l=bugtraq&m=130497311408250&w=2 HPdes Security Advisory: SSRT090208 http://www.osvdb.org/58185 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10438 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7394 http://www.securitytracker.com/id?1022914 http://secunia.com/advisories/36791 http://www.vupen.com/english/advisories/2009/3184 XForce ISS Database: php-certificate-unspecified(53334) https://exchange.xforce.ibmcloud.com/vulnerabilities/53334 Common Vulnerability Exposure (CVE) ID: CVE-2009-3292 http://www.mandriva.com/security/advisories?name=MDVSA-2009:302 http://www.openwall.com/lists/oss-security/2009/11/20/2 http://www.openwall.com/lists/oss-security/2009/11/20/3 http://news.php.net/php.announce/79 http://www.osvdb.org/58186 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7652 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9982 http://secunia.com/advisories/37412 Common Vulnerability Exposure (CVE) ID: CVE-2009-3293 http://www.osvdb.org/58187 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7047 Common Vulnerability Exposure (CVE) ID: CVE-2009-3546 BugTraq ID: 36712 http://www.securityfocus.com/bid/36712 http://www.mandriva.com/security/advisories?name=MDVSA-2009:285 http://marc.info/?l=oss-security&m=125562113503923&w=2 http://www.openwall.com/lists/oss-security/2009/11/20/5 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11199 http://www.redhat.com/support/errata/RHSA-2010-0003.html http://secunia.com/advisories/37069 http://secunia.com/advisories/37080 http://secunia.com/advisories/38055 http://www.vupen.com/english/advisories/2009/2929 http://www.vupen.com/english/advisories/2009/2930 Common Vulnerability Exposure (CVE) ID: CVE-2009-3557 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:303 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7396 http://secunia.com/advisories/37821 http://securityreason.com/securityalert/6601 http://www.vupen.com/english/advisories/2009/3593 Common Vulnerability Exposure (CVE) ID: CVE-2009-3558 http://securityreason.com/securityalert/6600 Common Vulnerability Exposure (CVE) ID: CVE-2009-4017 Bugtraq: 20091120 PHP "multipart/form-data" denial of service (Google Search) http://www.securityfocus.com/archive/1/507982/100/0/threaded http://seclists.org/fulldisclosure/2009/Nov/228 HPdes Security Advisory: HPSBMA02568 http://www.itrc.hp.com/service/cki/docDisplay.do?docId=emr_na-c02512995 HPdes Security Advisory: SSRT100219 http://www.mandriva.com/security/advisories?name=MDVSA-2009:305 http://www.acunetix.com/blog/websecuritynews/php-multipartform-data-denial-of-service/ http://www.openwall.com/lists/oss-security/2009/11/20/7 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10483 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6667 http://secunia.com/advisories/41480 http://secunia.com/advisories/41490 XForce ISS Database: php-multipart-formdata-dos(54455) https://exchange.xforce.ibmcloud.com/vulnerabilities/54455 Common Vulnerability Exposure (CVE) ID: CVE-2009-4018 BugTraq ID: 37138 http://www.securityfocus.com/bid/37138 http://marc.info/?l=oss-security&m=125886770008678&w=2 http://marc.info/?l=oss-security&m=125897935330618&w=2 http://www.openwall.com/lists/oss-security/2009/11/23/15 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7256
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.