ID de Prueba:	1.3.6.1.4.1.25623.1.0.58130
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200703-13 (net-misc/ssh)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200703-13.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200703-13. Vulnerability Insight: The SSH Secure Shell Server SFTP function is vulnerable to privilege escalation. Solution: This package is currently masked, there is no upgrade path for the 3.2.x version, and a license must be purchased in order to update to a non-vulnerable version. Because of this, we recommend unmerging this package: # emerge --ask --verbose --unmerge net-misc/ssh CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0705 BugTraq ID: 16625 http://www.securityfocus.com/bid/16625 BugTraq ID: 16640 http://www.securityfocus.com/bid/16640 CERT/CC vulnerability note: VU#419241 http://www.kb.cert.org/vuls/id/419241 http://security.gentoo.org/glsa/glsa-200703-13.xml HPdes Security Advisory: HPSBTU02322 http://marc.info/?l=bugtraq&m=120654385125315&w=2 HPdes Security Advisory: SSRT080011 http://securitytracker.com/id?1015619 http://secunia.com/advisories/18828 http://secunia.com/advisories/18843 http://secunia.com/advisories/24516 http://secunia.com/advisories/29552 http://www.vupen.com/english/advisories/2006/0554 http://www.vupen.com/english/advisories/2006/0555 http://www.vupen.com/english/advisories/2008/1008/references XForce ISS Database: sftp-logging-format-string(24651) https://exchange.xforce.ibmcloud.com/vulnerabilities/24651
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.