Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:761

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55253
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:761
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:761. PCRE is a Perl-compatible regular expression library. An integer overflow flaw was found in PCRE, triggered by a maliciously crafted regular expression. On systems that accept arbitrary regular expressions from untrusted users, this could be exploited to execute arbitrary code with the privileges of the application using the library. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-2491 to this issue. The security impact of this issue varies depending on the way that applications make use of PCRE. For example, the Apache web server uses the system PCRE library in order to parse regular expressions, but this flaw would only allow a user who already has the ability to write .htaccess files to gain 'apache' privileges. For applications supplied with Red Hat Enterprise Linux, a maximum security impact of moderate has been assigned. Users should update to these erratum packages that contain a backported patch to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-761.html Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 15647 BugTraq ID: 14620 Common Vulnerability Exposure (CVE) ID: CVE-2005-2491 1014744 http://securitytracker.com/id?1014744 102198 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102198-1 14620 http://www.securityfocus.com/bid/14620 15647 http://www.securityfocus.com/bid/15647 16502 http://secunia.com/advisories/16502 16679 http://secunia.com/advisories/16679 17252 http://secunia.com/advisories/17252 17813 http://secunia.com/advisories/17813 19072 http://secunia.com/advisories/19072 19193 http://secunia.com/advisories/19193 19532 http://secunia.com/advisories/19532 20060401-01-U ftp://patches.sgi.com/support/free/security/advisories/20060401-01-U 21522 http://secunia.com/advisories/21522 22691 http://secunia.com/advisories/22691 22875 http://secunia.com/advisories/22875 604 http://securityreason.com/securityalert/604 ADV-2005-1511 http://www.vupen.com/english/advisories/2005/1511 ADV-2005-2659 http://www.vupen.com/english/advisories/2005/2659 ADV-2006-0789 http://www.vupen.com/english/advisories/2006/0789 ADV-2006-4320 http://www.vupen.com/english/advisories/2006/4320 ADV-2006-4502 http://www.vupen.com/english/advisories/2006/4502 APPLE-SA-2005-11-29 http://docs.info.apple.com/article.html?artnum=302847 DSA-800 http://www.debian.org/security/2005/dsa-800 DSA-817 http://www.debian.org/security/2005/dsa-817 DSA-819 http://www.debian.org/security/2005/dsa-819 DSA-821 http://www.debian.org/security/2005/dsa-821 FLSA:168516 http://www.securityfocus.com/archive/1/427046/100/0/threaded GLSA-200508-17 http://www.gentoo.org/security/en/glsa/glsa-200508-17.xml GLSA-200509-02 http://www.gentoo.org/security/en/glsa/glsa-200509-02.xml GLSA-200509-08 http://www.gentoo.org/security/en/glsa/glsa-200509-08.xml GLSA-200509-12 http://www.gentoo.org/security/en/glsa/glsa-200509-12.xml GLSA-200509-19 http://www.gentoo.org/security/en/glsa/glsa-200509-19.xml HPSBMA02159 http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522 HPSBOV02683 http://marc.info/?l=bugtraq&m=130497311408250&w=2 HPSBUX02074 http://www.securityfocus.com/archive/1/428138/100/0/threaded OpenPKG-SA-2005.018 http://marc.info/?l=bugtraq&m=112606064317223&w=2 RHSA-2005:358 http://www.redhat.com/support/errata/RHSA-2005-358.html RHSA-2005:761 http://www.redhat.com/support/errata/RHSA-2005-761.html RHSA-2006:0197 http://www.redhat.com/support/errata/RHSA-2006-0197.html SCOSA-2006.10 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.10/SCOSA-2006.10.txt SSRT051251 SSRT061238 SSRT090208 SUSE-SA:2005:048 http://www.novell.com/linux/security/advisories/2005_48_pcre.html SUSE-SA:2005:049 http://www.novell.com/linux/security/advisories/2005_49_php.html SUSE-SA:2005:051 http://marc.info/?l=bugtraq&m=112605112027335&w=2 SUSE-SA:2005:052 http://www.novell.com/linux/security/advisories/2005_52_apache2.html TSLSA-2005-0059 http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html [httpd-cvs] 20190815 svn commit: r1048742 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html https://lists.apache.org/thread.html/54a42d4b01968df1117cea77fc53d6beb931c0e05936ad02af93e9ac%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20190815 svn commit: r1048743 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html https://lists.apache.org/thread.html/5df9bfb86a3b054bb985a45ff9250b0332c9ecc181eec232489e7f79%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20200401 svn commit: r1058586 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html https://lists.apache.org/thread.html/r0276683d8e1e07153fc8642618830ac0ade85b9ae0dc7b07f63bb8fc%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20200401 svn commit: r1058587 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/vulnerabilities-httpd.xml security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html https://lists.apache.org/thread.html/r8828e649175df56f1f9e3919938ac7826128525426e2748f0ab62feb%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1073139 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/json/ https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1073139 [3/13] - in /websites/staging/httpd/trunk/content: ./ security/json/ https://lists.apache.org/thread.html/re895fc1736d25c8cf57e102c871613b8aeec9ea26fd8a44e7942b5ab%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1073140 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/cvejsontohtml.py security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html https://lists.apache.org/thread.html/r2cb985de917e7da0848c440535f65a247754db8b2154a10089e4247b%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1073143 [2/3] - in /websites/staging/httpd/trunk/content: ./ security/ https://lists.apache.org/thread.html/r9e8622254184645bc963a1d47c5d47f6d5a36d6f080d8d2c43b2b142%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1073149 [1/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1073149 [5/13] - in /websites/staging/httpd/trunk/content: ./ security/ security/json/ https://lists.apache.org/thread.html/rafd145ba6cd0a4ced113a5823cdaff45aeb36eb09855b216401c66d6%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210330 svn commit: r1888194 [3/13] - /httpd/site/trunk/content/security/json/ https://lists.apache.org/thread.html/rd65d8ba68ba17e7deedafbf5bb4899f2ae4dad781d21b931c2941ac3%40%3Ccvs.httpd.apache.org%3E [httpd-cvs] 20210606 svn commit: r1075470 [2/4] - in /websites/staging/httpd/trunk/content: ./ security/json/CVE-2020-13938.json security/vulnerabilities_13.html security/vulnerabilities_20.html security/vulnerabilities_22.html security/vulnerabilities_24.html https://lists.apache.org/thread.html/r5001ecf3d6b2bdd0b732e527654248abb264f08390045d30709a92f6%40%3Ccvs.httpd.apache.org%3E http://support.avaya.com/elmodocs2/security/ASA-2005-216.pdf http://support.avaya.com/elmodocs2/security/ASA-2005-223.pdf http://support.avaya.com/elmodocs2/security/ASA-2006-081.htm http://support.avaya.com/elmodocs2/security/ASA-2006-159.htm http://www.ethereal.com/appnotes/enpa-sa-00021.html http://www.php.net/release_4_4_1.php oval:org.mitre.oval:def:11516 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11516 oval:org.mitre.oval:def:1496 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1496 oval:org.mitre.oval:def:1659 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1659 oval:org.mitre.oval:def:735 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A735
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com