Test Kennung:	1.3.6.1.4.1.25623.1.0.72502
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Ports: xinetd
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: xinetd CVE-2012-0862 builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0862 BugTraq ID: 53720 http://www.securityfocus.com/bid/53720 http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081446.html http://lists.fedoraproject.org/pipermail/package-announce/2012-May/081428.html http://www.mandriva.com/security/advisories?name=MDVSA-2012:155 https://bugzilla.redhat.com/attachment.cgi?id=583311 https://bugzilla.redhat.com/show_bug.cgi?id=790940 http://www.openwall.com/lists/oss-security/2012/05/09/5 http://www.openwall.com/lists/oss-security/2012/05/10/2 http://www.osvdb.org/81774 RedHat Security Advisories: RHSA-2013:1302 http://rhn.redhat.com/errata/RHSA-2013-1302.html http://www.securitytracker.com/id?1027050 XForce ISS Database: xinetd-tcpmux-weak-security(75965) https://exchange.xforce.ibmcloud.com/vulnerabilities/75965
Copyright	Copyright (C) 2012 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.