Red Hat Local Security Checks : RedHat Security Advisory RHSA-2011:0506

Preis/Funktionszusammenfassung | Bestellen | Neue Anfälligkeiten | Vertraulichkeit | Anfälligkeiten Suche

Anfälligkeitssuche		Suche in 61204 CVE Beschreibungen und 32582 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.69643

Kategorie: Red Hat Local Security Checks

Titel: RedHat Security Advisory RHSA-2011:0506

Zusammenfassung: Redhat Security Advisory RHSA-2011:0506

Beschreibung: The remote host is missing updates announced in
advisory RHSA-2011:0506.

rdesktop is a client for the Remote Desktop Server (previously, Terminal
Server) in Microsoft Windows. It uses the Remote Desktop Protocol (RDP) to
remotely present a user's desktop.

A directory traversal flaw was found in the way rdesktop shared a local
path with a remote server. If a user connects to a malicious server with
rdesktop, the server could use this flaw to cause rdesktop to read and
write to arbitrary, local files accessible to the user running rdesktop.
(CVE-2011-1595)

Red Hat would like to thank Cendio AB for reporting this issue. Cendio AB
acknowledges an anonymous contributor working with the SecuriTeam Secure
Disclosure program as the original reporter.

Users of rdesktop should upgrade to this updated package, which contains a
backported patch to resolve this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2011-0506.html

Risk factor : Medium

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2011-1595
http://sourceforge.net/mailarchive/message.php?msg_id=27376554
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061170.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061309.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061316.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:102
RedHat Security Advisories: RHSA-2011:0506
https://rhn.redhat.com/errata/RHSA-2011-0506.html
http://www.ubuntu.com/usn/USN-1136-1
BugTraq ID: 47419
http://www.securityfocus.com/bid/47419
http://securitytracker.com/id?1025525
http://secunia.com/advisories/44881

Copyright Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 32582 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Registrierung eines neuen Benutzers
Email:

Benutzerkennung:

Passwort:

Bitte schicken Sie mir den monatlichen Newsletter, der mich über die neuesten Services, Verbesserungen und Umfragen informiert.

Bitte schicken Sie mir eine Anfälligkeitstest Benachrichtigung, wenn ein neuer Test hinzugefügt wird.

Datenschutz

Anmeldung für registrierte Benutzer

Benutzerkennung:

Passwort:

Benutzerkennung oder Passwort vergessen?

Email/Benutzerkennung:

Test Kennung:	1.3.6.1.4.1.25623.1.0.69643
Kategorie:	Red Hat Local Security Checks
Titel:	RedHat Security Advisory RHSA-2011:0506
Zusammenfassung:	Redhat Security Advisory RHSA-2011:0506
Beschreibung:	The remote host is missing updates announced in advisory RHSA-2011:0506. rdesktop is a client for the Remote Desktop Server (previously, Terminal Server) in Microsoft Windows. It uses the Remote Desktop Protocol (RDP) to remotely present a user's desktop. A directory traversal flaw was found in the way rdesktop shared a local path with a remote server. If a user connects to a malicious server with rdesktop, the server could use this flaw to cause rdesktop to read and write to arbitrary, local files accessible to the user running rdesktop. (CVE-2011-1595) Red Hat would like to thank Cendio AB for reporting this issue. Cendio AB acknowledges an anonymous contributor working with the SecuriTeam Secure Disclosure program as the original reporter. Users of rdesktop should upgrade to this updated package, which contains a backported patch to resolve this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2011-0506.html Risk factor : Medium
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1595 http://sourceforge.net/mailarchive/message.php?msg_id=27376554 http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061170.html http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061309.html http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061316.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:102 RedHat Security Advisories: RHSA-2011:0506 https://rhn.redhat.com/errata/RHSA-2011-0506.html http://www.ubuntu.com/usn/USN-1136-1 BugTraq ID: 47419 http://www.securityfocus.com/bid/47419 http://securitytracker.com/id?1025525 http://secunia.com/advisories/44881
Copyright	Copyright (c) 2011 E-Soft Inc. http://www.securityspace.com