ID de Prueba:	1.3.6.1.4.1.25623.1.0.58940
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2007:0875
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2007:0875. MySQL is a multi-user, multi-threaded SQL database server. MySQL is a client/server implementation consisting of a server daemon (mysqld) and many different client programs and libraries. A flaw was discovered in MySQL's authentication protocol. It is possible for a remote unauthenticated attacker to send a specially crafted authentication request to the MySQL server causing it to crash. (CVE-2007-3780) All users of the MySQL server are advised to upgrade to these updated packages, which contain a backported patch which fixes this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2007-0875.html http://www.redhat.com/security/updates/classification/#important Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3780 BugTraq ID: 25017 http://www.securityfocus.com/bid/25017 Bugtraq: 20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server (Google Search) http://www.securityfocus.com/archive/1/473874/100/0/threaded Debian Security Information: DSA-1413 (Google Search) http://www.debian.org/security/2007/dsa-1413 http://security.gentoo.org/glsa/glsa-200708-10.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:177 http://bugs.mysql.com/bug.php?id=28984 http://lists.mysql.com/announce/470 http://osvdb.org/36732 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11058 http://www.redhat.com/support/errata/RHSA-2007-0875.html http://www.redhat.com/support/errata/RHSA-2007-0894.html http://www.securitytracker.com/id?1018629 http://secunia.com/advisories/25301 http://secunia.com/advisories/26073 http://secunia.com/advisories/26430 http://secunia.com/advisories/26498 http://secunia.com/advisories/26621 http://secunia.com/advisories/26710 http://secunia.com/advisories/26987 http://secunia.com/advisories/27155 http://secunia.com/advisories/27823 SuSE Security Announcement: SUSE-SR:2007:019 (Google Search) http://www.novell.com/linux/security/advisories/2007_19_sr.html https://usn.ubuntu.com/528-1/ http://www.vupen.com/english/advisories/2008/1000/references
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.