ID de Prueba:	1.3.6.1.4.1.25623.1.0.54653
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200408-23 (kdelibs)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200408-23.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200408-23. Vulnerability Insight: The cookie manager component in kdelibs contains a vulnerability allowing an attacker to potentially gain access to a user's session on a legitimate web server. Solution: All kdelibs users should upgrade to the latest version: # emerge sync # emerge -pv '>=kde-base/kdelibs-3.2.3-r2' # emerge '>=kde-base/kdelibs-3.2.3-r2' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0746 BugTraq ID: 10991 http://www.securityfocus.com/bid/10991 Bugtraq: 20040823 KDE Security Advisory: Konqueror Cross-Domain Cookie Injection (Google Search) http://marc.info/?l=bugtraq&m=109327681304401&w=2 Conectiva Linux advisory: CLA-2004:864 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000864 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:086 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11281 http://secunia.com/advisories/12341 XForce ISS Database: kde-konqueror-cookie-set(17063) https://exchange.xforce.ibmcloud.com/vulnerabilities/17063
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.