Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.880933
Kategorie:CentOS Local Security Checks
Titel:CentOS Update for NetworkManager CESA-2009:0362 centos4 i386
Zusammenfassung:The remote host is missing an update for the 'NetworkManager'; package(s) announced via the referenced advisory.
Beschreibung:Summary:
The remote host is missing an update for the 'NetworkManager'
package(s) announced via the referenced advisory.

Vulnerability Insight:
NetworkManager is a network link manager that attempts to keep a wired or
wireless network connection active at all times.

An information disclosure flaw was found in NetworkManager's D-Bus
interface. A local attacker could leverage this flaw to discover sensitive
information, such as network connection passwords and pre-shared keys.
(CVE-2009-0365)

Red Hat would like to thank Ludwig Nussel for responsibly reporting this
flaw.

NetworkManager users should upgrade to these updated packages, which
contain a backported patch that corrects this issue.

Affected Software/OS:
NetworkManager on CentOS 4

Solution:
Please install the updated packages.

CVSS Score:
4.6

CVSS Vector:
AV:L/AC:L/Au:S/C:C/I:N/A:N

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2009-0365
BugTraq ID: 33966
http://www.securityfocus.com/bid/33966
Debian Security Information: DSA-1955 (Google Search)
http://www.debian.org/security/2009/dsa-1955
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10828
http://www.redhat.com/support/errata/RHSA-2009-0361.html
http://www.redhat.com/support/errata/RHSA-2009-0362.html
http://www.securitytracker.com/id?1021908
http://securitytracker.com/id?1021910
http://securitytracker.com/id?1021911
http://secunia.com/advisories/34067
http://secunia.com/advisories/34177
http://secunia.com/advisories/34473
SuSE Security Announcement: SUSE-SA:2009:013 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00003.html
SuSE Security Announcement: SUSE-SR:2009:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
http://www.ubuntu.com/usn/USN-727-1
http://www.ubuntu.com/usn/USN-727-2
XForce ISS Database: networkmanager-dbus-info-disclosure(49062)
https://exchange.xforce.ibmcloud.com/vulnerabilities/49062
CopyrightCopyright (c) 2011 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.