Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200801-10 (tikiwiki)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.60273

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200801-10 (tikiwiki)

Resumen: The remote host is missing updates announced in;advisory GLSA 200801-10.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200801-10.

Vulnerability Insight:
Multiple vulnerabilities have been discovered in TikiWiki, some of them
having unknown impact.

Solution:
All TikiWiki users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/tikiwiki-1.9.9'

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-6526
BugTraq ID: 27004
http://www.securityfocus.com/bid/27004
Bugtraq: 20071224 Tikiwiki 1.9.8.3 tiki-special_chars.php XSS Vulnerability (Google Search)
http://www.securityfocus.com/archive/1/485483/100/0/threaded
http://security.gentoo.org/glsa/glsa-200801-10.xml
http://www.h-labs.org/blog/2007/12/24/tikiwiki_1_9_8_3_tiki_special_chars_php_xss_vulnerability.html
http://osvdb.org/41179
http://secunia.com/advisories/28225
http://secunia.com/advisories/28602
http://securityreason.com/securityalert/3483
Common Vulnerability Exposure (CVE) ID: CVE-2007-6528
BugTraq ID: 27008
http://www.securityfocus.com/bid/27008
Bugtraq: 20071224 [ISecAuditors Security Advisories] Tikiwiki CMS is vulnerable to path traversal attack (Google Search)
http://www.securityfocus.com/archive/1/485482/100/0/threaded
https://www.exploit-db.com/exploits/4942
http://osvdb.org/41178
http://securityreason.com/securityalert/3484
Common Vulnerability Exposure (CVE) ID: CVE-2007-6529
http://osvdb.org/41175
http://osvdb.org/41176
http://osvdb.org/41177

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60273
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200801-10 (tikiwiki)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200801-10.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200801-10. Vulnerability Insight: Multiple vulnerabilities have been discovered in TikiWiki, some of them having unknown impact. Solution: All TikiWiki users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/tikiwiki-1.9.9' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6526 BugTraq ID: 27004 http://www.securityfocus.com/bid/27004 Bugtraq: 20071224 Tikiwiki 1.9.8.3 tiki-special_chars.php XSS Vulnerability (Google Search) http://www.securityfocus.com/archive/1/485483/100/0/threaded http://security.gentoo.org/glsa/glsa-200801-10.xml http://www.h-labs.org/blog/2007/12/24/tikiwiki_1_9_8_3_tiki_special_chars_php_xss_vulnerability.html http://osvdb.org/41179 http://secunia.com/advisories/28225 http://secunia.com/advisories/28602 http://securityreason.com/securityalert/3483 Common Vulnerability Exposure (CVE) ID: CVE-2007-6528 BugTraq ID: 27008 http://www.securityfocus.com/bid/27008 Bugtraq: 20071224 [ISecAuditors Security Advisories] Tikiwiki CMS is vulnerable to path traversal attack (Google Search) http://www.securityfocus.com/archive/1/485482/100/0/threaded https://www.exploit-db.com/exploits/4942 http://osvdb.org/41178 http://securityreason.com/securityalert/3484 Common Vulnerability Exposure (CVE) ID: CVE-2007-6529 http://osvdb.org/41175 http://osvdb.org/41176 http://osvdb.org/41177
Copyright	Copyright (C) 2008 E-Soft Inc.