Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200512-11 (CenterICQ)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56068

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200512-11 (CenterICQ)

Resumen: The remote host is missing updates announced in;advisory GLSA 200512-11.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200512-11.

Vulnerability Insight:
CenterICQ is vulnerable to a Denial of Service issue, and also potentially
to the execution of arbitrary code through an included vulnerable ktools
library.

Solution:
All CenterICQ users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-im/centericq-4.21.0-r2'

CVSS Score:
7.8

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-3694
BugTraq ID: 15649
http://www.securityfocus.com/bid/15649
Debian Security Information: DSA-912 (Google Search)
http://www.debian.org/security/2005/dsa-912
http://security.gentoo.org/glsa/glsa-200512-11.xml
http://www.osvdb.org/21270
http://secunia.com/advisories/17798
http://secunia.com/advisories/17818
http://secunia.com/advisories/18081
XForce ISS Database: centericq-zero-length-dos(23327)
https://exchange.xforce.ibmcloud.com/vulnerabilities/23327
Common Vulnerability Exposure (CVE) ID: CVE-2005-3863
BugTraq ID: 15600
http://www.securityfocus.com/bid/15600
Bugtraq: 20051127 ZRCSA-200503 - ktools Buffer Overflow Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/417906/100/0/threaded
Debian Security Information: DSA-1083 (Google Search)
http://www.debian.org/security/2006/dsa-1083
Debian Security Information: DSA-1088 (Google Search)
http://www.debian.org/security/2006/dsa-1088
http://security.gentoo.org/glsa/glsa-200608-27.xml
http://www.zone-h.org/en/advisories/read/id=8480/
http://www.osvdb.org/21161
http://secunia.com/advisories/17768
http://secunia.com/advisories/20329
http://secunia.com/advisories/20368
http://secunia.com/advisories/20446
http://secunia.com/advisories/21684
http://www.vupen.com/english/advisories/2005/2605
http://www.vupen.com/english/advisories/2006/2062
XForce ISS Database: ktools-kkstrtext-bo(23233)
https://exchange.xforce.ibmcloud.com/vulnerabilities/23233

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56068
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200512-11 (CenterICQ)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200512-11.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200512-11. Vulnerability Insight: CenterICQ is vulnerable to a Denial of Service issue, and also potentially to the execution of arbitrary code through an included vulnerable ktools library. Solution: All CenterICQ users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-im/centericq-4.21.0-r2' CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-3694 BugTraq ID: 15649 http://www.securityfocus.com/bid/15649 Debian Security Information: DSA-912 (Google Search) http://www.debian.org/security/2005/dsa-912 http://security.gentoo.org/glsa/glsa-200512-11.xml http://www.osvdb.org/21270 http://secunia.com/advisories/17798 http://secunia.com/advisories/17818 http://secunia.com/advisories/18081 XForce ISS Database: centericq-zero-length-dos(23327) https://exchange.xforce.ibmcloud.com/vulnerabilities/23327 Common Vulnerability Exposure (CVE) ID: CVE-2005-3863 BugTraq ID: 15600 http://www.securityfocus.com/bid/15600 Bugtraq: 20051127 ZRCSA-200503 - ktools Buffer Overflow Vulnerability (Google Search) http://www.securityfocus.com/archive/1/417906/100/0/threaded Debian Security Information: DSA-1083 (Google Search) http://www.debian.org/security/2006/dsa-1083 Debian Security Information: DSA-1088 (Google Search) http://www.debian.org/security/2006/dsa-1088 http://security.gentoo.org/glsa/glsa-200608-27.xml http://www.zone-h.org/en/advisories/read/id=8480/ http://www.osvdb.org/21161 http://secunia.com/advisories/17768 http://secunia.com/advisories/20329 http://secunia.com/advisories/20368 http://secunia.com/advisories/20446 http://secunia.com/advisories/21684 http://www.vupen.com/english/advisories/2005/2605 http://www.vupen.com/english/advisories/2006/2062 XForce ISS Database: ktools-kkstrtext-bo(23233) https://exchange.xforce.ibmcloud.com/vulnerabilities/23233
Copyright	Copyright (C) 2008 E-Soft Inc.