ID de Prueba:	1.3.6.1.4.1.25623.1.0.56177
Categoría:	Conectiva Local Security Checks
Título:	Conectiva Security Advisory CLSA-2006:1061
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory CLSA-2006:1061. This announcement fixes a stack-based buffer overflow vulnerability in the ldif_get_line function in ldif.c of Sylpheed before 2.1.6 that allows user-complicit attackers to execute arbitrary code by having local users import LDIF files with long lines. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=001061 http://sylpheed.good-day.net/ Risk factor : High CVSS Score: 5.1
Referencia Cruzada:	BugTraq ID: 15363 Common Vulnerability Exposure (CVE) ID: CVE-2005-3354 http://www.securityfocus.com/bid/15363 Debian Security Information: DSA-906 (Google Search) http://www.debian.org/security/2005/dsa-906 http://www.xatrix.org/advisory.php?s=7282 http://www.gentoo.org/security/en/glsa/glsa-200511-13.xml http://osvdb.org/20675 http://secunia.com/advisories/17492 http://secunia.com/advisories/17525/ http://secunia.com/advisories/17540/ http://secunia.com/advisories/17678 http://secunia.com/advisories/17831/ SuSE Security Announcement: SUSE-SR:2005:028 (Google Search) http://www.novell.com/linux/security/advisories/2005_28_sr.html http://www.vupen.com/english/advisories/2005/2360 XForce ISS Database: sylpheed-ldif-dos(23028) https://exchange.xforce.ibmcloud.com/vulnerabilities/23028
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.