Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200608-19 (wordpress)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57869

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200608-19 (wordpress)

Resumen: The remote host is missing updates announced in;advisory GLSA 200608-19.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200608-19.

Vulnerability Insight:
A flaw in WordPress allows registered WordPress users to elevate
privileges.

Solution:
All WordPress users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/wordpress-2.0.4'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-3389
BugTraq ID: 18779
http://www.securityfocus.com/bid/18779
Bugtraq: 20060702 WordPress 2.0.3 SQL Error and Full Path Disclosure (Google Search)
http://www.securityfocus.com/archive/1/438942/100/0/threaded
Bugtraq: 20060704 Re: WordPress 2.0.3 SQL Error and Full Path Disclosure (Google Search)
http://www.securityfocus.com/archive/1/439031/100/0/threaded
http://www.securityfocus.com/archive/1/439062/100/0/threaded
http://www.securityfocus.com/archive/1/440127/100/0/threaded
http://security.gentoo.org/glsa/glsa-200608-19.xml
http://secunia.com/advisories/20928
http://secunia.com/advisories/21447
http://securityreason.com/securityalert/1187
http://www.vupen.com/english/advisories/2006/2661
Common Vulnerability Exposure (CVE) ID: CVE-2006-3390
Common Vulnerability Exposure (CVE) ID: CVE-2006-4028
BugTraq ID: 19247
http://www.securityfocus.com/bid/19247
http://bugs.gentoo.org/show_bug.cgi?id=142142
http://unknowngenius.com/blog/archives/2006/07/26/critical-announcement-to-all-wordpress-users/
http://unknowngenius.com/blog/archives/2006/07/27/followup-on-wordpress/
http://www.osvdb.org/27633
http://secunia.com/advisories/21309
http://www.vupen.com/english/advisories/2006/3071

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57869
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200608-19 (wordpress)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200608-19.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200608-19. Vulnerability Insight: A flaw in WordPress allows registered WordPress users to elevate privileges. Solution: All WordPress users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/wordpress-2.0.4' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-3389 BugTraq ID: 18779 http://www.securityfocus.com/bid/18779 Bugtraq: 20060702 WordPress 2.0.3 SQL Error and Full Path Disclosure (Google Search) http://www.securityfocus.com/archive/1/438942/100/0/threaded Bugtraq: 20060704 Re: WordPress 2.0.3 SQL Error and Full Path Disclosure (Google Search) http://www.securityfocus.com/archive/1/439031/100/0/threaded http://www.securityfocus.com/archive/1/439062/100/0/threaded http://www.securityfocus.com/archive/1/440127/100/0/threaded http://security.gentoo.org/glsa/glsa-200608-19.xml http://secunia.com/advisories/20928 http://secunia.com/advisories/21447 http://securityreason.com/securityalert/1187 http://www.vupen.com/english/advisories/2006/2661 Common Vulnerability Exposure (CVE) ID: CVE-2006-3390 Common Vulnerability Exposure (CVE) ID: CVE-2006-4028 BugTraq ID: 19247 http://www.securityfocus.com/bid/19247 http://bugs.gentoo.org/show_bug.cgi?id=142142 http://unknowngenius.com/blog/archives/2006/07/26/critical-announcement-to-all-wordpress-users/ http://unknowngenius.com/blog/archives/2006/07/27/followup-on-wordpress/ http://www.osvdb.org/27633 http://secunia.com/advisories/21309 http://www.vupen.com/english/advisories/2006/3071
Copyright	Copyright (C) 2008 E-Soft Inc.