Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2007:179 (fetchmail)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.58570

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2007:179 (fetchmail)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to fetchmail
announced via advisory MDKSA-2007:179.

A vulnerability in fetchmail was found where it could crash when
attempting to deliver an internal warning or error message through an
untrusted or compromised SMTP server, leading to a denial of service.

Updated packages have been patched to prevent these issues.

Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:179

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-4565
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html
BugTraq ID: 25495
http://www.securityfocus.com/bid/25495
Bugtraq: 20070907 FLEA-2007-0053-1 fetchmail (Google Search)
http://www.securityfocus.com/archive/1/478798/100/0/threaded
Bugtraq: 20080617 fetchmail security announcement fetchmail-SA-2007-02 (CVE-2007-4565) (Google Search)
http://www.securityfocus.com/archive/1/493388/100/0/threaded
Debian Security Information: DSA-1377 (Google Search)
http://www.debian.org/security/2007/dsa-1377
http://www.mandriva.com/security/advisories?name=MDKSA-2007:179
http://osvdb.org/45833
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10528
http://www.securitytracker.com/id?1018627
http://secunia.com/advisories/27399
http://secunia.com/advisories/33937
http://securityreason.com/securityalert/3074
SuSE Security Announcement: SUSE-SR:2007:022 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html
http://www.trustix.org/errata/2007/0028/
http://www.ubuntu.com/usn/usn-520-1
http://www.vupen.com/english/advisories/2007/3032
http://www.vupen.com/english/advisories/2009/0422
XForce ISS Database: fetchmail-warning-dos(36385)
https://exchange.xforce.ibmcloud.com/vulnerabilities/36385

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.58570
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:179 (fetchmail)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to fetchmail announced via advisory MDKSA-2007:179. A vulnerability in fetchmail was found where it could crash when attempting to deliver an internal warning or error message through an untrusted or compromised SMTP server, leading to a denial of service. Updated packages have been patched to prevent these issues. Affected: 2007.0, 2007.1, Corporate 3.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2007:179 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-4565 http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html BugTraq ID: 25495 http://www.securityfocus.com/bid/25495 Bugtraq: 20070907 FLEA-2007-0053-1 fetchmail (Google Search) http://www.securityfocus.com/archive/1/478798/100/0/threaded Bugtraq: 20080617 fetchmail security announcement fetchmail-SA-2007-02 (CVE-2007-4565) (Google Search) http://www.securityfocus.com/archive/1/493388/100/0/threaded Debian Security Information: DSA-1377 (Google Search) http://www.debian.org/security/2007/dsa-1377 http://www.mandriva.com/security/advisories?name=MDKSA-2007:179 http://osvdb.org/45833 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10528 http://www.securitytracker.com/id?1018627 http://secunia.com/advisories/27399 http://secunia.com/advisories/33937 http://securityreason.com/securityalert/3074 SuSE Security Announcement: SUSE-SR:2007:022 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2007-10/msg00008.html http://www.trustix.org/errata/2007/0028/ http://www.ubuntu.com/usn/usn-520-1 http://www.vupen.com/english/advisories/2007/3032 http://www.vupen.com/english/advisories/2009/0422 XForce ISS Database: fetchmail-warning-dos(36385) https://exchange.xforce.ibmcloud.com/vulnerabilities/36385
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com