Red Hat Local Security Checks : RedHat Security Advisory RHSA-2006:0600

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57345
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2006:0600
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2006:0600. Mailman is a program used to help manage email discussion lists. A flaw was found in the way Mailman handled MIME multipart messages. An attacker could send a carefully crafted MIME multipart email message to a mailing list run by Mailman which caused that particular mailing list to stop working. (CVE-2006-2941) Several cross-site scripting (XSS) issues were found in Mailman. An attacker could exploit these issues to perform cross-site scripting attacks against the Mailman administrator. (CVE-2006-3636) Red Hat would like to thank Barry Warsaw for disclosing these vulnerabilities. Users of Mailman should upgrade to these updated packages, which contain backported patches to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2006-0600.html http://www.redhat.com/security/updates/classification/#moderate Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2941 1016808 http://securitytracker.com/id?1016808 19831 http://www.securityfocus.com/bid/19831 21732 http://secunia.com/advisories/21732 21792 http://secunia.com/advisories/21792 21837 http://secunia.com/advisories/21837 21879 http://secunia.com/advisories/21879 22011 http://secunia.com/advisories/22011 22020 http://secunia.com/advisories/22020 22639 http://secunia.com/advisories/22639 ADV-2006-3446 http://www.vupen.com/english/advisories/2006/3446 GLSA-200609-12 http://security.gentoo.org/glsa/glsa-200609-12.xml MDKSA-2006:165 http://www.mandriva.com/security/advisories?name=MDKSA-2006:165 RHSA-2006:0600 http://rhn.redhat.com/errata/RHSA-2006-0600.html SUSE-SR:2006:025 http://www.novell.com/linux/security/advisories/2006_25_sr.html USN-345-1 http://www.ubuntu.com/usn/usn-345-1 [Mailman-Announce] 20060913 RELEASED: Mailman 2.1.9 http://mail.python.org/pipermail/mailman-announce/2006-September/000087.html http://sourceforge.net/project/shownotes.php?group_id=103&release_id=444295 http://svn.sourceforge.net/viewvc/mailman/trunk/mailman/Mailman/Utils.py?r1=7859&r2=7923 mailman-headers-dos(28732) https://exchange.xforce.ibmcloud.com/vulnerabilities/28732 oval:org.mitre.oval:def:9912 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9912 Common Vulnerability Exposure (CVE) ID: CVE-2006-3636 20021 http://www.securityfocus.com/bid/20021 20060913 Mailman 2.1.8 Multiple Security Issues http://www.securityfocus.com/archive/1/445992/100/0/threaded 22227 http://secunia.com/advisories/22227 DSA-1188 http://www.debian.org/security/2006/dsa-1188 http://moritz-naumann.com/adv/0013/mailmanmulti/0013.txt mailman-unspecified-xss(28731) https://exchange.xforce.ibmcloud.com/vulnerabilities/28731 oval:org.mitre.oval:def:10553 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10553
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com