ID de Prueba:	1.3.6.1.4.1.25623.1.0.120656
Categoría:	Amazon Linux Local Security Checks
Título:	Amazon Linux: Security Advisory (ALAS-2016-666)
Resumen:	The remote host is missing an update for the 'sos' package(s) announced via the ALAS-2016-666 advisory.
Descripción:	Summary: The remote host is missing an update for the 'sos' package(s) announced via the ALAS-2016-666 advisory. Vulnerability Insight: An insecure temporary file use flaw was found in the way sos created certain sosreport files. A local attacker could possibly use this flaw to perform a symbolic link attack to reveal the contents of sosreport files, or in some cases modify arbitrary files and escalate their privileges on the system. Affected Software/OS: 'sos' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-7529 83162 http://www.securityfocus.com/bid/83162 RHSA-2016:0152 http://rhn.redhat.com/errata/RHSA-2016-0152.html RHSA-2016:0188 http://rhn.redhat.com/errata/RHSA-2016-0188.html USN-2845-1 http://www.ubuntu.com/usn/USN-2845-1 https://access.redhat.com/errata/RHSA-2016:0152 https://access.redhat.com/errata/RHSA-2016:0188 https://bugzilla.redhat.com/show_bug.cgi?id=1282542 https://github.com/sosreport/sos/issues/696
Copyright	Copyright (C) 2016 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.