ID de Prueba:	1.3.6.1.4.1.25623.1.0.54612
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200407-05 (xdm)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200407-05.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200407-05. Vulnerability Insight: XDM will open TCP sockets for its chooser, even if the DisplayManager.requestPort setting is set to 0. This may allow authorized users to access a machine remotely via X, even if the administrator has configured XDM to refuse such connections. Solution: If you are using XFree86, you should run the following: # emerge sync # emerge -pv '>=x11-base/xfree-4.3.0-r6' # emerge '>=x11-base/xfree-4.3.0-r6' If you are using X.org's X11 server, you should run the following: # emerge sync # emerge -pv '>=x11-base/xorg-x11-6.7.0-r1' # emerge '>=x11-base/xorg-x11-6.7.0-r1' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0419 BugTraq ID: 10423 http://www.securityfocus.com/bid/10423 Computer Incident Advisory Center Bulletin: P-001 http://www.ciac.org/ciac/bulletins/p-001.shtml http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073 OpenBSD Security Advisory: 20040526 008: SECURITY FIX: May 26, 2004 http://www.openbsd.org/errata.html#xdm https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161 http://www.redhat.com/support/errata/RHSA-2004-478.html http://securitytracker.com/id?1010306 http://secunia.com/advisories/12019 XForce ISS Database: xdm-socket-gain-access(16264) https://exchange.xforce.ibmcloud.com/vulnerabilities/16264
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.