Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:598

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55011

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2005:598

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2005:598.

Sysreport is a utility that gathers information about a system's hardware
and configuration. The information can then be used for diagnostic purposes
and debugging.

Bill Stearns discovered a bug in the way sysreport creates temporary files.
It is possible that a local attacker could obtain sensitive information
about the system when sysreport is run. The Common Vulnerabilities and
Exposures project assigned the name CVE-2005-2104 to this issue.

Users of sysreport should update to this erratum package, which contains a
patch that resolves this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-598.html

Risk factor : Medium

CVSS Score:
2.1

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-2104
1014653
http://securitytracker.com/id?1014653
15379
http://www.securityfocus.com/bid/15379
16381
http://secunia.com/advisories/16381
17539
http://secunia.com/advisories/17539
18682
http://www.osvdb.org/18682
FEDORA-2005-1071
http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00034.html
FEDORA-2005-1072
http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00035.html
RHSA-2005:598
http://www.redhat.com/support/errata/RHSA-2005-598.html
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=162978
oval:org.mitre.oval:def:9411
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9411
sysreport-race-condition(21770)
https://exchange.xforce.ibmcloud.com/vulnerabilities/21770

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55011
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:598
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:598. Sysreport is a utility that gathers information about a system's hardware and configuration. The information can then be used for diagnostic purposes and debugging. Bill Stearns discovered a bug in the way sysreport creates temporary files. It is possible that a local attacker could obtain sensitive information about the system when sysreport is run. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-2104 to this issue. Users of sysreport should update to this erratum package, which contains a patch that resolves this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-598.html Risk factor : Medium CVSS Score: 2.1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2104 1014653 http://securitytracker.com/id?1014653 15379 http://www.securityfocus.com/bid/15379 16381 http://secunia.com/advisories/16381 17539 http://secunia.com/advisories/17539 18682 http://www.osvdb.org/18682 FEDORA-2005-1071 http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00034.html FEDORA-2005-1072 http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00035.html RHSA-2005:598 http://www.redhat.com/support/errata/RHSA-2005-598.html https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=162978 oval:org.mitre.oval:def:9411 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9411 sysreport-race-condition(21770) https://exchange.xforce.ibmcloud.com/vulnerabilities/21770
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com