Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200701-23 (cacti)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57983

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200701-23 (cacti)

Resumen: The remote host is missing updates announced in;advisory GLSA 200701-23.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200701-23.

Vulnerability Insight:
Cacti has three vulnerabilities that could allow shell command execution or
SQL injection.

Solution:
All Cacti users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-analyzer/cacti-0.8.6i-r1'

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-6799
BugTraq ID: 21799
http://www.securityfocus.com/bid/21799
Bugtraq: 20070118 Re: FW: [cacti-announce] Cacti 0.8.6j Released (Google Search)
http://www.securityfocus.com/archive/1/457290/100/0/threaded
Debian Security Information: DSA-1250 (Google Search)
http://www.debian.org/security/2007/dsa-1250
https://www.exploit-db.com/exploits/3029
http://security.gentoo.org/glsa/glsa-200701-23.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:015
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.001.html
http://securitytracker.com/id?1017451
http://secunia.com/advisories/23528
http://secunia.com/advisories/23665
http://secunia.com/advisories/23917
http://secunia.com/advisories/23941
SuSE Security Announcement: SUSE-SA:2007:007 (Google Search)
http://www.novell.com/linux/security/advisories/2007_07_cacti.html
http://www.vupen.com/english/advisories/2006/5193
XForce ISS Database: cacti-cmd-sql-injection(31177)
https://exchange.xforce.ibmcloud.com/vulnerabilities/31177

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57983
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200701-23 (cacti)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200701-23.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200701-23. Vulnerability Insight: Cacti has three vulnerabilities that could allow shell command execution or SQL injection. Solution: All Cacti users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/cacti-0.8.6i-r1' CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-6799 BugTraq ID: 21799 http://www.securityfocus.com/bid/21799 Bugtraq: 20070118 Re: FW: [cacti-announce] Cacti 0.8.6j Released (Google Search) http://www.securityfocus.com/archive/1/457290/100/0/threaded Debian Security Information: DSA-1250 (Google Search) http://www.debian.org/security/2007/dsa-1250 https://www.exploit-db.com/exploits/3029 http://security.gentoo.org/glsa/glsa-200701-23.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:015 http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.001.html http://securitytracker.com/id?1017451 http://secunia.com/advisories/23528 http://secunia.com/advisories/23665 http://secunia.com/advisories/23917 http://secunia.com/advisories/23941 SuSE Security Announcement: SUSE-SA:2007:007 (Google Search) http://www.novell.com/linux/security/advisories/2007_07_cacti.html http://www.vupen.com/english/advisories/2006/5193 XForce ISS Database: cacti-cmd-sql-injection(31177) https://exchange.xforce.ibmcloud.com/vulnerabilities/31177
Copyright	Copyright (C) 2008 E-Soft Inc.