ID de Prueba:	1.3.6.1.4.1.25623.1.0.120331
Categoría:	Amazon Linux Local Security Checks
Título:	Amazon Linux: Security Advisory (ALAS-2012-130)
Resumen:	The remote host is missing an update for the 'munin' package(s) announced via the ALAS-2012-130 advisory.
Descripción:	Summary: The remote host is missing an update for the 'munin' package(s) announced via the ALAS-2012-130 advisory. Vulnerability Insight: Munin before 2.0.6 stores plugin state files that run as root in the same group-writable directory as non-root plugins, which allows local users to execute arbitrary code by replacing a state file, as demonstrated using the smart_ plugin. Affected Software/OS: 'munin' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3512 BugTraq ID: 55698 http://www.securityfocus.com/bid/55698 http://lists.fedoraproject.org/pipermail/package-announce/2012-September/086375.html http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088260.html http://lists.fedoraproject.org/pipermail/package-announce/2012-September/088239.html http://www.munin-monitoring.org/ticket/1234 http://www.openwall.com/lists/oss-security/2012/08/21/1 http://www.ubuntu.com/usn/USN-1622-1
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.