ID de Prueba:	1.3.6.1.4.1.25623.1.0.140074
Categoría:	Palo Alto PAN-OS Local Security Checks
Título:	Palo Alto PAN-OS Local Privilege Escalation (PAN-SA-2016-0034)
Resumen:	Palo Alto Networks firewalls do not properly validate certain environment variables which can potentially allow executing code with higher privileges. A potential attacker with local shell access could manipulate arbitrary environment variables which could result in a process running with higher privileges.
Descripción:	Summary: Palo Alto Networks firewalls do not properly validate certain environment variables which can potentially allow executing code with higher privileges. A potential attacker with local shell access could manipulate arbitrary environment variables which could result in a process running with higher privileges. Affected Software/OS: PAN-OS 5.0.19 and earlier, PAN-OS 5.1.12 and earlier, PAN-OS 6.0.14 and earlier, PAN-OS 6.1.14 and earlier, PAN-OS 7.0.10 and earlier, PAN-OS 7.1.5 and earlier. Solution: Update to PAN-OS 5.0.20 and later, PAN-OS 5.1.13 and later, PAN-OS 6.0.15 and later, PAN-OS 6.1.15 and later, PAN-OS 7.0.11 and later, PAN-OS 7.1.6 and later. CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-9151 BugTraq ID: 94400 http://www.securityfocus.com/bid/94400 https://www.exploit-db.com/exploits/40788/ https://www.exploit-db.com/exploits/40789/ http://www.securitytracker.com/id/1037381
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.