Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:081

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.55452

Categoría: Red Hat Local Security Checks

Título: RedHat Security Advisory RHSA-2005:081

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing updates announced in
advisory RHSA-2005:081.

A bug was found in the way several of Ghostscript's utility scripts created
temporary files. A local user could cause these utilities to overwrite
files that the victim running the utility has write access to. The Common
Vulnerabilities and Exposures project assigned the name CVE-2004-0967 to
this issue.

Additionally, this update addresses the following issue:

A problem has been identified in the PDF output driver, which can cause
output to be delayed indefinitely on some systems. The fix has been
backported from GhostScript 7.07.

All users of ghostscript should upgrade to these updated packages, which
contain backported patches to resolve these issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-081.html

Risk factor : High

CVSS Score:
7.2

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0467
BugTraq ID: 12379
http://www.securityfocus.com/bid/12379
CERT/CC vulnerability note: VU#409555
http://www.kb.cert.org/vuls/id/409555
http://www.niscc.gov.uk/niscc/docs/al-20050126-00067.html?lang=en
http://www.redhat.com/support/errata/RHSA-2005-081.html
http://securitytracker.com/id?1013039
http://secunia.com/advisories/14049
XForce ISS Database: junos-dos(19094)
https://exchange.xforce.ibmcloud.com/vulnerabilities/19094
Common Vulnerability Exposure (CVE) ID: CVE-2004-0967
BugTraq ID: 11285
http://www.securityfocus.com/bid/11285
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10284
SCO Security Bulletin: SCOSA-2006.19
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.19/SCOSA-2006.19.txt
SCO Security Bulletin: SCOSA-2006.23
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.23/SCOSA-2006.23.txt
http://secunia.com/advisories/16997
http://secunia.com/advisories/17135
http://secunia.com/advisories/19799
http://secunia.com/advisories/20056
http://www.trustix.org/errata/2004/0050
https://www.ubuntu.com/usn/usn-3-1/
XForce ISS Database: script-temporary-file-overwrite(17583)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17583

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.55452
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2005:081
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2005:081. A bug was found in the way several of Ghostscript's utility scripts created temporary files. A local user could cause these utilities to overwrite files that the victim running the utility has write access to. The Common Vulnerabilities and Exposures project assigned the name CVE-2004-0967 to this issue. Additionally, this update addresses the following issue: A problem has been identified in the PDF output driver, which can cause output to be delayed indefinitely on some systems. The fix has been backported from GhostScript 7.07. All users of ghostscript should upgrade to these updated packages, which contain backported patches to resolve these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-081.html Risk factor : High CVSS Score: 7.2
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0467 BugTraq ID: 12379 http://www.securityfocus.com/bid/12379 CERT/CC vulnerability note: VU#409555 http://www.kb.cert.org/vuls/id/409555 http://www.niscc.gov.uk/niscc/docs/al-20050126-00067.html?lang=en http://www.redhat.com/support/errata/RHSA-2005-081.html http://securitytracker.com/id?1013039 http://secunia.com/advisories/14049 XForce ISS Database: junos-dos(19094) https://exchange.xforce.ibmcloud.com/vulnerabilities/19094 Common Vulnerability Exposure (CVE) ID: CVE-2004-0967 BugTraq ID: 11285 http://www.securityfocus.com/bid/11285 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10284 SCO Security Bulletin: SCOSA-2006.19 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.19/SCOSA-2006.19.txt SCO Security Bulletin: SCOSA-2006.23 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.23/SCOSA-2006.23.txt http://secunia.com/advisories/16997 http://secunia.com/advisories/17135 http://secunia.com/advisories/19799 http://secunia.com/advisories/20056 http://www.trustix.org/errata/2004/0050 https://www.ubuntu.com/usn/usn-3-1/ XForce ISS Database: script-temporary-file-overwrite(17583) https://exchange.xforce.ibmcloud.com/vulnerabilities/17583
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com