Test Kennung:	1.3.6.1.4.1.25623.1.1.10.2017.0171
Kategorie:	Mageia Linux Local Security Checks
Titel:	Mageia: Security Advisory (MGASA-2017-0171)
Zusammenfassung:	The remote host is missing an update for the 'smb4k' package(s) announced via the MGASA-2017-0171 advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'smb4k' package(s) announced via the MGASA-2017-0171 advisory. Vulnerability Insight: Smb4k contains a logic flaw in which mount helper binary does not properly verify the mount command it is being asked to run. This allows calling any other binary as root since the mount helper is typically installed as suid (CVE-2017-8849). Affected Software/OS: 'smb4k' package(s) on Mageia 5. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-8849 BugTraq ID: 98690 http://www.securityfocus.com/bid/98690 BugTraq ID: 98737 http://www.securityfocus.com/bid/98737 Debian Security Information: DSA-3951 (Google Search) http://www.debian.org/security/2017/dsa-3951 https://www.exploit-db.com/exploits/42053/ https://security.gentoo.org/glsa/201705-14 http://www.openwall.com/lists/oss-security/2017/05/10/3
Copyright	Copyright (C) 2022 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.