Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200802-03 (horde-imp)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.60380

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200802-03 (horde-imp)

Resumen: The remote host is missing updates announced in;advisory GLSA 200802-03.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200802-03.

Vulnerability Insight:
Insufficient checks in Horde may allow a remote attacker to bypass security
restrictions.

Solution:
All Horde IMP users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/horde-imp-4.1.6'

CVSS Score:
5.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-6018
BugTraq ID: 27223
http://www.securityfocus.com/bid/27223
Debian Security Information: DSA-1470 (Google Search)
http://www.debian.org/security/2008/dsa-1470
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00888.html
https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00927.html
http://secunia.com/secunia_research/2007-102/advisory/
http://lists.horde.org/archives/announce/2008/000360.html
http://lists.horde.org/archives/announce/2008/000365.html
http://lists.horde.org/archives/announce/2008/000366.html
http://secunia.com/advisories/28020
http://secunia.com/advisories/28546
http://secunia.com/advisories/29184
http://secunia.com/advisories/29185
http://secunia.com/advisories/29186
http://secunia.com/advisories/34418
SuSE Security Announcement: SUSE-SR:2009:007 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html
XForce ISS Database: horde-impgroupware-filter-security-bypass(39595)
https://exchange.xforce.ibmcloud.com/vulnerabilities/39595

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60380
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200802-03 (horde-imp)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200802-03.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200802-03. Vulnerability Insight: Insufficient checks in Horde may allow a remote attacker to bypass security restrictions. Solution: All Horde IMP users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/horde-imp-4.1.6' CVSS Score: 5.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6018 BugTraq ID: 27223 http://www.securityfocus.com/bid/27223 Debian Security Information: DSA-1470 (Google Search) http://www.debian.org/security/2008/dsa-1470 https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00888.html https://www.redhat.com/archives/fedora-package-announce/2008-February/msg00927.html http://secunia.com/secunia_research/2007-102/advisory/ http://lists.horde.org/archives/announce/2008/000360.html http://lists.horde.org/archives/announce/2008/000365.html http://lists.horde.org/archives/announce/2008/000366.html http://secunia.com/advisories/28020 http://secunia.com/advisories/28546 http://secunia.com/advisories/29184 http://secunia.com/advisories/29185 http://secunia.com/advisories/29186 http://secunia.com/advisories/34418 SuSE Security Announcement: SUSE-SR:2009:007 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-03/msg00004.html XForce ISS Database: horde-impgroupware-filter-security-bypass(39595) https://exchange.xforce.ibmcloud.com/vulnerabilities/39595
Copyright	Copyright (C) 2008 E-Soft Inc.