Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200703-01 (snort)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.58060

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200703-01 (snort)

Resumen: The remote host is missing updates announced in;advisory GLSA 200703-01.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200703-01.

Vulnerability Insight:
The Snort DCE/RPC preprocessor contains a buffer overflow that could result
in the remote execution of arbitrary code.

Solution:
All Snort users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-analyzer/snort-2.6.1.3'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-5276
BugTraq ID: 22616
http://www.securityfocus.com/bid/22616
Bugtraq: 20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code (Google Search)
http://www.securityfocus.com/archive/1/461810/100/0/threaded
Cert/CC Advisory: TA07-050A
http://www.us-cert.gov/cas/techalerts/TA07-050A.html
CERT/CC vulnerability note: VU#196240
http://www.kb.cert.org/vuls/id/196240
https://www.exploit-db.com/exploits/3362
http://fedoranews.org/updates/FEDORA-2007-206.shtml
http://security.gentoo.org/glsa/glsa-200703-01.xml
ISS Security Advisory: 20070219 Sourcefire Snort Remote Buffer Overflow
http://iss.net/threats/257.html
https://bugzilla.redhat.com/show_bug.cgi?id=229265
http://www.osvdb.org/32094
http://www.securitytracker.com/id?1017669
http://www.securitytracker.com/id?1017670
http://secunia.com/advisories/24190
http://secunia.com/advisories/24235
http://secunia.com/advisories/24239
http://secunia.com/advisories/24240
http://secunia.com/advisories/24272
http://secunia.com/advisories/26746
http://www.vupen.com/english/advisories/2007/0656
http://www.vupen.com/english/advisories/2007/0668
XForce ISS Database: smb-bo(31275)
https://exchange.xforce.ibmcloud.com/vulnerabilities/31275

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.58060
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200703-01 (snort)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200703-01.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200703-01. Vulnerability Insight: The Snort DCE/RPC preprocessor contains a buffer overflow that could result in the remote execution of arbitrary code. Solution: All Snort users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/snort-2.6.1.3' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-5276 BugTraq ID: 22616 http://www.securityfocus.com/bid/22616 Bugtraq: 20070303 ERRATA: [ GLSA 200703-01 ] Snort: Remote execution of arbitrary code (Google Search) http://www.securityfocus.com/archive/1/461810/100/0/threaded Cert/CC Advisory: TA07-050A http://www.us-cert.gov/cas/techalerts/TA07-050A.html CERT/CC vulnerability note: VU#196240 http://www.kb.cert.org/vuls/id/196240 https://www.exploit-db.com/exploits/3362 http://fedoranews.org/updates/FEDORA-2007-206.shtml http://security.gentoo.org/glsa/glsa-200703-01.xml ISS Security Advisory: 20070219 Sourcefire Snort Remote Buffer Overflow http://iss.net/threats/257.html https://bugzilla.redhat.com/show_bug.cgi?id=229265 http://www.osvdb.org/32094 http://www.securitytracker.com/id?1017669 http://www.securitytracker.com/id?1017670 http://secunia.com/advisories/24190 http://secunia.com/advisories/24235 http://secunia.com/advisories/24239 http://secunia.com/advisories/24240 http://secunia.com/advisories/24272 http://secunia.com/advisories/26746 http://www.vupen.com/english/advisories/2007/0656 http://www.vupen.com/english/advisories/2007/0668 XForce ISS Database: smb-bo(31275) https://exchange.xforce.ibmcloud.com/vulnerabilities/31275
Copyright	Copyright (C) 2008 E-Soft Inc.