Búsqueda de    
Vulnerabilidad   
    Buscar 219043 Descripciones CVE y
99761 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.53928
Categoría:Slackware Local Security Checks
Título:Slackware Advisory SSA:2004-140-01 cvs
Resumen:The remote host is missing an update as announced;via advisory SSA:2004-140-01.
Descripción:Summary:
The remote host is missing an update as announced
via advisory SSA:2004-140-01.

Vulnerability Insight:
New cvs packages are available for Slackware 8.1, 9.0, 9.1, and -current to
fix a buffer overflow vulnerability which could allow an attacker to run
arbitrary programs on the CVS server. Sites running a CVS server should
upgrade to the new CVS package right away.

Solution:
Upgrade to the new package(s).

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: BugTraq ID: 10384
Common Vulnerability Exposure (CVE) ID: CVE-2004-0396
http://www.securityfocus.com/bid/10384
Bugtraq: 20040519 Advisory 07/2004: CVS remote vulnerability (Google Search)
http://cert.uni-stuttgart.de/archive/bugtraq/2004/05/msg00219.html
http://marc.info/?l=bugtraq&m=108498454829020&w=2
Bugtraq: 20040519 [OpenPKG-SA-2004.022] OpenPKG Security Advisory (cvs) (Google Search)
http://marc.info/?l=bugtraq&m=108500040719512&w=2
Cert/CC Advisory: TA04-147A
http://www.us-cert.gov/cas/techalerts/TA04-147A.html
CERT/CC vulnerability note: VU#192038
http://www.kb.cert.org/vuls/id/192038
Computer Incident Advisory Center Bulletin: O-147
http://www.ciac.org/ciac/bulletins/o-147.shtml
Debian Security Information: DSA-505 (Google Search)
http://www.debian.org/security/2004/dsa-505
http://marc.info/?l=bugtraq&m=108636445031613&w=2
FreeBSD Security Advisory: FreeBSD-SA-04:10
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:10.cvs.asc
http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0980.html
http://security.gentoo.org/glsa/glsa-200405-12.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2004:048
http://security.e-matters.de/advisories/072004.html
NETBSD Security Advisory: NetBSD-SA2004-008
ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2004-008.txt.asc
OpenBSD Security Advisory: 20040520 cvs server buffer overflow vulnerability
http://marc.info/?l=openbsd-security-announce&m=108508894405639&w=2
http://www.osvdb.org/6305
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9058
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A970
http://www.redhat.com/support/errata/RHSA-2004-190.html
http://secunia.com/advisories/11641
http://secunia.com/advisories/11647
http://secunia.com/advisories/11651
http://secunia.com/advisories/11652
http://secunia.com/advisories/11674
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.395865
SuSE Security Announcement: SuSE-SA:2004:013 (Google Search)
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021742.html
XForce ISS Database: cvs-entry-line-bo(16193)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16193
CopyrightCopyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.




© 1998-2024 E-Soft Inc. Todos los derechos reservados.