ID de Prueba:	1.3.6.1.4.1.25623.1.0.54752
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200411-31 (ProZilla)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200411-31.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200411-31. Vulnerability Insight: ProZilla contains several buffer overflow vulnerabilities that can be exploited by a malicious server to execute arbitrary code with the rights of the user running ProZilla. Solution: Currently, there is no released version of ProZilla that contains a fix for these issues. The original author did not respond to our queries, the code contains several other problems and more secure alternatives exist. Therefore, the ProZilla package has been hard-masked prior to complete removal from Portage, and current users are advised to unmerge the package. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1120 BugTraq ID: 11734 http://www.securityfocus.com/bid/11734 Bugtraq: 20041124 Prozilla Remote Exploit (Google Search) http://www.securityfocus.com/archive/1/382219 Debian Security Information: DSA-663 (Google Search) http://www.debian.org/security/2005/dsa-663 http://www.gentoo.org/security/en/glsa/glsa-200411-31.xml XForce ISS Database: prozilla-bo(18210) https://exchange.xforce.ibmcloud.com/vulnerabilities/18210
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.