Conectiva Local Security Checks : Conectiva Security Advisory CLSA-2005:1005

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55314

Categoría: Conectiva Local Security Checks

Título: Conectiva Security Advisory CLSA-2005:1005

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory CLSA-2005:1005.

This announcement fixes a vulnerability in fetchmail
that could allow remote POP3 servers to cause a denial
of service and possibly execute arbitrary code via long
UIDL responses.

Solution:
The apt tool can be used to perform RPM package upgrades
by running 'apt-get update' followed by 'apt-get upgrade'

http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=001005
http://fetchmail.berlios.de/

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: BugTraq ID: 14349
Common Vulnerability Exposure (CVE) ID: CVE-2005-2335
http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html
http://www.securityfocus.com/bid/14349
BugTraq ID: 19289
http://www.securityfocus.com/bid/19289
Bugtraq: 20060526 rPSA-2006-0084-1 fetchmail (Google Search)
http://www.securityfocus.com/archive/1/435197/100/0/threaded
Bugtraq: 20060801 DMA[2006-0801a] - 'Apple OSX fetchmail buffer overflow' (Google Search)
http://www.securityfocus.com/archive/1/441856/100/200/threaded
Cert/CC Advisory: TA06-214A
http://www.us-cert.gov/cas/techalerts/TA06-214A.html
Debian Security Information: DSA-774 (Google Search)
http://www.debian.org/security/2005/dsa-774
http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00088.html
http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00089.html
http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00104.html
http://www.osvdb.org/18174
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1038
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1124
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8833
http://www.redhat.com/support/errata/RHSA-2005-640.html
http://secunia.com/advisories/16176
http://secunia.com/advisories/21253
SuSE Security Announcement: SUSE-SR:2005:018 (Google Search)
http://www.novell.com/linux/security/advisories/2005_18_sr.html
http://www.vupen.com/english/advisories/2005/1171
http://www.vupen.com/english/advisories/2006/3101

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55314
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLSA-2005:1005
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLSA-2005:1005. This announcement fixes a vulnerability in fetchmail that could allow remote POP3 servers to cause a denial of service and possibly execute arbitrary code via long UIDL responses. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=001005 http://fetchmail.berlios.de/ Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	BugTraq ID: 14349 Common Vulnerability Exposure (CVE) ID: CVE-2005-2335 http://lists.apple.com/archives/security-announce/2006//Aug/msg00000.html http://www.securityfocus.com/bid/14349 BugTraq ID: 19289 http://www.securityfocus.com/bid/19289 Bugtraq: 20060526 rPSA-2006-0084-1 fetchmail (Google Search) http://www.securityfocus.com/archive/1/435197/100/0/threaded Bugtraq: 20060801 DMA[2006-0801a] - 'Apple OSX fetchmail buffer overflow' (Google Search) http://www.securityfocus.com/archive/1/441856/100/200/threaded Cert/CC Advisory: TA06-214A http://www.us-cert.gov/cas/techalerts/TA06-214A.html Debian Security Information: DSA-774 (Google Search) http://www.debian.org/security/2005/dsa-774 http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00088.html http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00089.html http://www.redhat.com/archives/fedora-announce-list/2005-July/msg00104.html http://www.osvdb.org/18174 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1038 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1124 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8833 http://www.redhat.com/support/errata/RHSA-2005-640.html http://secunia.com/advisories/16176 http://secunia.com/advisories/21253 SuSE Security Announcement: SUSE-SR:2005:018 (Google Search) http://www.novell.com/linux/security/advisories/2005_18_sr.html http://www.vupen.com/english/advisories/2005/1171 http://www.vupen.com/english/advisories/2006/3101
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com