ID de Prueba:	1.3.6.1.4.1.25623.1.0.51225
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2002:221
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2002:221. A number of vulnerabilities have been found that affect various versions of KDE. This errata provides updates for these issues. KDE is a graphical desktop environment for workstations. A number of vulnerabilities have been found in various versions of KDE. The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack. The Common Vulnerabilities and Exposures project has assigned the name CVE-2002-0970 to this issue. The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0 through 3.0.3 does not properly initialize the domains on sub-frames and sub-iframes, which can allow remote attackers to execute scripts and steal cookies from subframes that are in other domains. (CVE-2002-1151) Multiple buffer overflows exist in the KDE LAN browsing implementation the reslisa daemon contains a buffer overflow vulnerability which could be exploited if the reslisa binary is SUID root. Additionally, the lisa daemon contains a vulnerability which potentially enables any local user, as well any any remote attacker on the LAN who is able to gain control of the LISa port (7741 by default), to obtain root privileges. In Red Hat Linux reslisa is not SUID root and lisa services are not automatically started. (CVE-2002-1247, CVE-2002-1306) Red Hat Linux Advanced Server 2.1 provides KDE version 2.2.2 and is therefore vulnerable to these issues. This errata provides new kdelibs and kdenetworks packages which contain patches to correct these issues. Please note that there is are two additional vulnerabilities that affect KDE 2.x which are not fixed by this errata. A vulnerability in the rlogin KIO subsystem (rlogin.protocol) of KDE 2.x 2.1 and later, and KDE 3.x 3.0.4 and earlier, allows local and remote attackers to execute arbitrary code via a carefully crafted URL. (CVE-2002-1281). A similar vulnerability affects the telnet KIO subsystem (telnet.protocol) of KDE 2.x 2.1 and later. (CVE-2002-1282) At this time, Red Hat recommends disabling both the rlogin and telnet KIO protocols as a workaround. To disable both protocols, execute these commands while logged in as root: rm /usr/share/services/rlogin.protocol rm /usr/share/services/telnet.protocol Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2002-221.html http://marc.theaimsgroup.com/?l=bugtraq& m=102977530005148 http://www.kde.org/info/security/advisory-20020908-2.txt http://www.kde.org/info/security/advisory-20021111-1.txt http://www.kde.org/info/security/advisory-20021111-2.txt Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1247 BugTraq ID: 6157 http://www.securityfocus.com/bid/6157 Bugtraq: 20021111 iDEFENSE Security Advisory 11.11.02: Buffer Overflow in KDE resLISa (Google Search) http://marc.info/?l=bugtraq&m=103704823501757&w=2 Bugtraq: 20021112 KDE Security Advisory: resLISa / LISa Vulnerabilities (Google Search) http://marc.info/?l=bugtraq&m=103712329102632&w=2 Bugtraq: 20021114 GLSA: kdelibs (Google Search) http://marc.info/?l=bugtraq&m=103728981029342&w=2 Computer Incident Advisory Center Bulletin: N-020 http://www.ciac.org/ciac/bulletins/n-020.shtml Debian Security Information: DSA-193 (Google Search) http://www.debian.org/security/2002/dsa-193 http://www.mandriva.com/security/advisories?name=MDKSA-2002:080 http://www.idefense.com/advisory/11.11.02.txt http://www.redhat.com/support/errata/RHSA-2002-220.html http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0068.html http://www.iss.net/security_center/static/10592.php Common Vulnerability Exposure (CVE) ID: CVE-2002-1306 Debian Security Information: DSA-214 (Google Search) http://www.debian.org/security/2002/dsa-214 http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-080.php SuSE Security Announcement: SuSE-SA:2002:042 (Google Search) http://www.novell.com/linux/security/advisories/2002_042_kdenetwork.html http://www.iss.net/security_center/static/10598.php http://www.iss.net/security_center/static/10597.php Common Vulnerability Exposure (CVE) ID: CVE-2002-0970 BugTraq ID: 5410 http://www.securityfocus.com/bid/5410 Bugtraq: 20020812 Re: IE SSL Vulnerability (Konqueror affected too) (Google Search) http://marc.info/?l=bugtraq&m=102918241005893&w=2 Bugtraq: 20020818 KDE Security Advisory: Konqueror SSL vulnerability (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-08/0170.html Caldera Security Advisory: CSSA-2002-047.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-047.0.txt Conectiva Linux advisory: CLA-2002:519 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000519 Debian Security Information: DSA-155 (Google Search) http://www.debian.org/security/2002/dsa-155 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:058 http://www.redhat.com/support/errata/RHSA-2002-221.html XForce ISS Database: ssl-ca-certificate-spoofing(9776) https://exchange.xforce.ibmcloud.com/vulnerabilities/9776 Common Vulnerability Exposure (CVE) ID: CVE-2002-1151 BugTraq ID: 5689 http://www.securityfocus.com/bid/5689 Bugtraq: 20020910 KDE Security Advisory: Konqueror Cross Site Scripting Vulnerability (Google Search) http://marc.info/?l=bugtraq&m=103175850925395&w=2 Conectiva Linux advisory: CLA-2002:525 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000525 Debian Security Information: DSA-167 (Google Search) http://www.debian.org/security/2002/dsa-167 http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-064.php http://www.osvdb.org/7867 http://www.iss.net/security_center/static/10039.php Common Vulnerability Exposure (CVE) ID: CVE-2002-1281 BugTraq ID: 6182 http://www.securityfocus.com/bid/6182 Bugtraq: 20021112 KDE Security Advisory: rlogin.protocol and telnet.protocol URL KIO Vulnerability (Google Search) http://marc.info/?l=bugtraq&m=103712550205730&w=2 Caldera Security Advisory: CSSA-2003-012.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-012.0.txt Debian Security Information: DSA-204 (Google Search) http://www.debian.org/security/2002/dsa-204 http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-079.php http://secunia.com/advisories/8298 http://www.iss.net/security_center/static/10602.php Common Vulnerability Exposure (CVE) ID: CVE-2002-1282 http://www.iss.net/security_center/static/10603.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.