ID de Prueba:	1.3.6.1.4.1.25623.1.0.53037
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:502
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:502. Sysreport is a utility that gathers information about a system's hardware and configuration. The information can then be used for diagnostic purposes and debugging. When run by the root user, sysreport includes the contents of the /etc/sysconfig/rhn/up2date configuration file. If up2date has been configured to connect to a proxy server that requires an authentication password, that password is included in plain text in the system report. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-1760 to this issue. Users of sysreport should update to this erratum package, which contains a patch that removes any proxy authentication passwords. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-502.html Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 13936 Common Vulnerability Exposure (CVE) ID: CVE-2005-1760 1014181 http://securitytracker.com/id?1014181 13936 http://www.securityfocus.com/bid/13936 15675 http://secunia.com/advisories/15675 RHSA-2005:502 http://www.redhat.com/support/errata/RHSA-2005-502.html oval:org.mitre.oval:def:623 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A623 oval:org.mitre.oval:def:9522 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9522
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.