ID de Prueba:	1.3.6.1.4.1.25623.1.0.57894
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200609-16 (tikiwiki)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200609-16.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200609-16. Vulnerability Insight: Tikiwiki contains a cross-site scripting (XSS) vulnerability as well as a second vulnerability which may allow remote execution of arbitrary code. Solution: All Tikiwiki users should upgrade to the latest version: # emerge --sync # emerge --oneshot --verbose --ask '>=www-apps/tikiwiki-1.9.5' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4299 BugTraq ID: 19654 http://www.securityfocus.com/bid/19654 http://security.gentoo.org/glsa/glsa-200609-16.xml http://www.osvdb.org/28071 http://secunia.com/advisories/21536 http://secunia.com/advisories/22100 http://www.vupen.com/english/advisories/2006/3351 XForce ISS Database: tikiwiki-search-xss(28498) https://exchange.xforce.ibmcloud.com/vulnerabilities/28498 Common Vulnerability Exposure (CVE) ID: CVE-2006-4602 BugTraq ID: 19819 http://www.securityfocus.com/bid/19819 https://www.exploit-db.com/exploits/2288 http://isc.sans.org/diary.php?storyid=1672 http://www.osvdb.org/28456 http://secunia.com/advisories/21733 http://www.vupen.com/english/advisories/2006/3450
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.