Conectiva Local Security Checks : Conectiva Security Advisory CLSA-2005:984 (ruby)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55074

Categoría: Conectiva Local Security Checks

Título: Conectiva Security Advisory CLSA-2005:984 (ruby)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory CLSA-2005:984.

This announcement fixes a XMLRPC.iPIMethods vulnerability
which chould allow remote attackers to execute arbitrary
commands.

Solution:
The apt tool can be used to perform RPM package upgrades
by running 'apt-get update' followed by 'apt-get upgrade'

http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000984
http://www.ruby-lang.org/

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-1992
14016
http://www.securityfocus.com/bid/14016
16920
http://secunia.com/advisories/16920/
APPLE-SA-2005-09-22
http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html
DSA-748
http://www.debian.org/security/2005/dsa-748
ESB-2005.0732
http://www.auscert.org.au/5509
P-312
http://www.ciac.org/ciac/bulletins/p-312.shtml
RHSA-2005:543
http://www.redhat.com/support/errata/RHSA-2005-543.html
SUSE-SR:2005:018
http://www.novell.com/linux/security/advisories/2005_18_sr.html
VU#684913
http://www.kb.cert.org/vuls/id/684913
http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-core/5237
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=315064
http://www2.ruby-lang.org/en/20050701.html
oval:org.mitre.oval:def:10819
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10819

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55074
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLSA-2005:984 (ruby)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLSA-2005:984. This announcement fixes a XMLRPC.iPIMethods vulnerability which chould allow remote attackers to execute arbitrary commands. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=000984 http://www.ruby-lang.org/ Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1992 14016 http://www.securityfocus.com/bid/14016 16920 http://secunia.com/advisories/16920/ APPLE-SA-2005-09-22 http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html DSA-748 http://www.debian.org/security/2005/dsa-748 ESB-2005.0732 http://www.auscert.org.au/5509 P-312 http://www.ciac.org/ciac/bulletins/p-312.shtml RHSA-2005:543 http://www.redhat.com/support/errata/RHSA-2005-543.html SUSE-SR:2005:018 http://www.novell.com/linux/security/advisories/2005_18_sr.html VU#684913 http://www.kb.cert.org/vuls/id/684913 http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-core/5237 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=315064 http://www2.ruby-lang.org/en/20050701.html oval:org.mitre.oval:def:10819 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10819
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com