Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201311-12

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.121071

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201311-12

Resumen: Gentoo Linux Local Security Checks GLSA 201311-12

Descripción: Summary:
Gentoo Linux Local Security Checks GLSA 201311-12

Vulnerability Insight:
A stack-based buffer overflow flaw has been discovered in the way Open DC Hub sanitized content of a users MyINFO message.

Solution:
Update the affected packages to the latest available version.

CVSS Score:
6.0

CVSS Vector:
AV:N/AC:M/Au:S/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2010-1147
20100331 OpenDcHub 0.8.1 Remote Code Execution Exploit
http://www.securityfocus.com/archive/1/510428
39129
http://www.securityfocus.com/bid/39129
39664
http://secunia.com/advisories/39664
ADV-2010-1023
http://www.vupen.com/english/advisories/2010/1023
ADV-2010-1044
http://www.vupen.com/english/advisories/2010/1044
FEDORA-2010-6415
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/040380.html
FEDORA-2010-6426
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/040421.html
FEDORA-2010-6478
http://lists.fedoraproject.org/pipermail/package-announce/2010-April/040360.html
[oss-security] 20100403 CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message
http://openwall.com/lists/oss-security/2010/04/03/1
[oss-security] 20100406 Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message
http://marc.info/?l=oss-security&m=127051570728944&w=2
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576308
http://www.indahax.com/exploits/opendchub-0-8-1-remote-code-execution-exploit#more-600
https://bugzilla.redhat.com/show_bug.cgi?id=579206

Copyright Copyright (C) 2015 Eero Volotinen

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.121071
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201311-12
Resumen:	Gentoo Linux Local Security Checks GLSA 201311-12
Descripción:	Summary: Gentoo Linux Local Security Checks GLSA 201311-12 Vulnerability Insight: A stack-based buffer overflow flaw has been discovered in the way Open DC Hub sanitized content of a users MyINFO message. Solution: Update the affected packages to the latest available version. CVSS Score: 6.0 CVSS Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-1147 20100331 OpenDcHub 0.8.1 Remote Code Execution Exploit http://www.securityfocus.com/archive/1/510428 39129 http://www.securityfocus.com/bid/39129 39664 http://secunia.com/advisories/39664 ADV-2010-1023 http://www.vupen.com/english/advisories/2010/1023 ADV-2010-1044 http://www.vupen.com/english/advisories/2010/1044 FEDORA-2010-6415 http://lists.fedoraproject.org/pipermail/package-announce/2010-April/040380.html FEDORA-2010-6426 http://lists.fedoraproject.org/pipermail/package-announce/2010-April/040421.html FEDORA-2010-6478 http://lists.fedoraproject.org/pipermail/package-announce/2010-April/040360.html [oss-security] 20100403 CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message http://openwall.com/lists/oss-security/2010/04/03/1 [oss-security] 20100406 Re: CVE Request -- OpenDCHub v0.8.1 -- Stack overflow by handling a specially-crafted MyINFO message http://marc.info/?l=oss-security&m=127051570728944&w=2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=576308 http://www.indahax.com/exploits/opendchub-0-8-1-remote-code-execution-exploit#more-600 https://bugzilla.redhat.com/show_bug.cgi?id=579206
Copyright	Copyright (C) 2015 Eero Volotinen