ID de Prueba:	1.3.6.1.4.1.25623.1.0.51532
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLA-2002:522
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLA-2002:522. Mailman[1] is a mailing list manager. office reported[3] several cross site scripting vulnerabilities in Mailman versions 2.0.11 and older. The authors have been notified and released[2] version 2.0.12 shortly thereafter to address these issues. Using these vulnerabilities a remote attacker could obtain sensitive information, such as authentication cookies or even the administrative password of a specific mailing list, by crafting a special URL with javascript in it and somehow having a list administrator click on it. This announcement updates mailman to version 2.0.13. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://www.list.org/ http://mail.python.org/pipermail/mailman-announce/2002-July/000043.html http://archives.neohapsis.com/archives/bugtraq/2002-07/0268.html http://www.securityspace.com/smysecure/catid.html?in=CLA-2002:522 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002002 Risk factor : High
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.