Test Kennung:	1.3.6.1.4.1.25623.1.0.67506
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Security Advisory (FreeBSD-SA-10:05.opie.asc)
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-10:05.opie.asc
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-10:05.opie.asc Vulnerability Insight: OPIE is a one-time password system designed to help to secure a system against replay attacks. It does so using a secure hash function and a challenge/response system. OPIE is enabled by default on FreeBSD. A programming error in the OPIE library could allow an off-by-one buffer overflow to write a single zero byte beyond the end of an on-stack buffer. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1938 BugTraq ID: 40403 http://www.securityfocus.com/bid/40403 Debian Security Information: DSA-2281 (Google Search) http://www.debian.org/security/2011/dsa-2281 http://www.exploit-db.com/exploits/12762 FreeBSD Security Advisory: FreeBSD-SA-10:05 http://security.FreeBSD.org/advisories/FreeBSD-SA-10:05.opie.asc http://blog.pi3.com.pl/?p=111 http://site.pi3.com.pl/adv/libopie-adv.txt http://securitytracker.com/id?1024040 http://securitytracker.com/id?1025709 http://secunia.com/advisories/39963 http://secunia.com/advisories/39966 http://secunia.com/advisories/45136 http://securityreason.com/securityalert/7450 http://securityreason.com/achievement_securityalert/87
Copyright	Copyright (C) 2010 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.