Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200704-20 (NAS)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.58226

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200704-20 (NAS)

Resumen: The remote host is missing updates announced in;advisory GLSA 200704-20.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200704-20.

Vulnerability Insight:
The Network Audio System is vulnerable to a buffer overflow that could
result in the execution of arbitrary code with root privileges.

Solution:
All NAS users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=media-libs/nas-1.8b'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-1543
BugTraq ID: 23017
http://www.securityfocus.com/bid/23017
Bugtraq: 20070403 FLEA-2007-0007-1: nas (Google Search)
http://www.securityfocus.com/archive/1/464606/30/7230/threaded
Debian Security Information: DSA-1273 (Google Search)
http://www.debian.org/security/2007/dsa-1273
http://security.gentoo.org/glsa/glsa-200704-20.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:065
http://aluigi.altervista.org/adv/nasbugs-adv.txt
http://www.securitytracker.com/id?1017822
http://secunia.com/advisories/24527
http://secunia.com/advisories/24601
http://secunia.com/advisories/24628
http://secunia.com/advisories/24638
http://secunia.com/advisories/24783
http://secunia.com/advisories/24980
http://www.ubuntu.com/usn/usn-446-1
http://www.vupen.com/english/advisories/2007/0997
XForce ISS Database: nas-uslsocket-bo(33047)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33047
Common Vulnerability Exposure (CVE) ID: CVE-2007-1544
XForce ISS Database: nas-procauwriteelement-dos(33051)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33051
Common Vulnerability Exposure (CVE) ID: CVE-2007-1545
XForce ISS Database: nas-addresource-dos(33050)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33050
Common Vulnerability Exposure (CVE) ID: CVE-2007-1546
XForce ISS Database: nas-compileinputs-dos(33055)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33055
XForce ISS Database: nas-procausetelements-dos(33054)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33054
Common Vulnerability Exposure (CVE) ID: CVE-2007-1547
XForce ISS Database: nas-readrequestfromclient-dos(33059)
https://exchange.xforce.ibmcloud.com/vulnerabilities/33059

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.58226
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200704-20 (NAS)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200704-20.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200704-20. Vulnerability Insight: The Network Audio System is vulnerable to a buffer overflow that could result in the execution of arbitrary code with root privileges. Solution: All NAS users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=media-libs/nas-1.8b' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1543 BugTraq ID: 23017 http://www.securityfocus.com/bid/23017 Bugtraq: 20070403 FLEA-2007-0007-1: nas (Google Search) http://www.securityfocus.com/archive/1/464606/30/7230/threaded Debian Security Information: DSA-1273 (Google Search) http://www.debian.org/security/2007/dsa-1273 http://security.gentoo.org/glsa/glsa-200704-20.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:065 http://aluigi.altervista.org/adv/nasbugs-adv.txt http://www.securitytracker.com/id?1017822 http://secunia.com/advisories/24527 http://secunia.com/advisories/24601 http://secunia.com/advisories/24628 http://secunia.com/advisories/24638 http://secunia.com/advisories/24783 http://secunia.com/advisories/24980 http://www.ubuntu.com/usn/usn-446-1 http://www.vupen.com/english/advisories/2007/0997 XForce ISS Database: nas-uslsocket-bo(33047) https://exchange.xforce.ibmcloud.com/vulnerabilities/33047 Common Vulnerability Exposure (CVE) ID: CVE-2007-1544 XForce ISS Database: nas-procauwriteelement-dos(33051) https://exchange.xforce.ibmcloud.com/vulnerabilities/33051 Common Vulnerability Exposure (CVE) ID: CVE-2007-1545 XForce ISS Database: nas-addresource-dos(33050) https://exchange.xforce.ibmcloud.com/vulnerabilities/33050 Common Vulnerability Exposure (CVE) ID: CVE-2007-1546 XForce ISS Database: nas-compileinputs-dos(33055) https://exchange.xforce.ibmcloud.com/vulnerabilities/33055 XForce ISS Database: nas-procausetelements-dos(33054) https://exchange.xforce.ibmcloud.com/vulnerabilities/33054 Common Vulnerability Exposure (CVE) ID: CVE-2007-1547 XForce ISS Database: nas-readrequestfromclient-dos(33059) https://exchange.xforce.ibmcloud.com/vulnerabilities/33059
Copyright	Copyright (C) 2008 E-Soft Inc.