Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200611-11 (tikiwiki)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57924

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200611-11 (tikiwiki)

Resumen: The remote host is missing updates announced in;advisory GLSA 200611-11.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200611-11.

Vulnerability Insight:
TikiWiki allows for the disclosure of MySQL database authentication
credentials and for cross-site scripting attacks.

Solution:
All TikiWiki users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/tikiwiki-1.9.6'

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-5702
BugTraq ID: 20858
http://www.securityfocus.com/bid/20858
Bugtraq: 20061101 tikiwiki 1.9.5 mysql password disclosure & xss (Google Search)
http://www.securityfocus.com/archive/1/450268/100/0/threaded
http://security.gentoo.org/glsa/glsa-200611-11.xml
http://secunia.com/advisories/22678
http://secunia.com/advisories/23039
http://securityreason.com/securityalert/1816
http://www.vupen.com/english/advisories/2006/4316
XForce ISS Database: tikiwiki-password-info-disclosure(29960)
https://exchange.xforce.ibmcloud.com/vulnerabilities/29960
Common Vulnerability Exposure (CVE) ID: CVE-2006-5703
XForce ISS Database: tikiwiki-tikifeatured-xss(29958)
https://exchange.xforce.ibmcloud.com/vulnerabilities/29958

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57924
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200611-11 (tikiwiki)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200611-11.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200611-11. Vulnerability Insight: TikiWiki allows for the disclosure of MySQL database authentication credentials and for cross-site scripting attacks. Solution: All TikiWiki users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/tikiwiki-1.9.6' CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-5702 BugTraq ID: 20858 http://www.securityfocus.com/bid/20858 Bugtraq: 20061101 tikiwiki 1.9.5 mysql password disclosure & xss (Google Search) http://www.securityfocus.com/archive/1/450268/100/0/threaded http://security.gentoo.org/glsa/glsa-200611-11.xml http://secunia.com/advisories/22678 http://secunia.com/advisories/23039 http://securityreason.com/securityalert/1816 http://www.vupen.com/english/advisories/2006/4316 XForce ISS Database: tikiwiki-password-info-disclosure(29960) https://exchange.xforce.ibmcloud.com/vulnerabilities/29960 Common Vulnerability Exposure (CVE) ID: CVE-2006-5703 XForce ISS Database: tikiwiki-tikifeatured-xss(29958) https://exchange.xforce.ibmcloud.com/vulnerabilities/29958
Copyright	Copyright (C) 2008 E-Soft Inc.