Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200802-11 (asterisk)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.60448

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200802-11 (asterisk)

Resumen: The remote host is missing updates announced in;advisory GLSA 200802-11.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200802-11.

Vulnerability Insight:
Multiple vulnerabilities have been found in Asterisk.

Solution:
All Asterisk users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-misc/asterisk-1.2.17-r1'

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-3762
BugTraq ID: 24949
http://www.securityfocus.com/bid/24949
Debian Security Information: DSA-1358 (Google Search)
http://www.debian.org/security/2007/dsa-1358
http://security.gentoo.org/glsa/glsa-200802-11.xml
http://www.securitytracker.com/id?1018407
http://secunia.com/advisories/26099
http://secunia.com/advisories/29051
SuSE Security Announcement: SUSE-SR:2007:015 (Google Search)
http://www.novell.com/linux/security/advisories/2007_15_sr.html
http://www.vupen.com/english/advisories/2007/2563
XForce ISS Database: asterisk-iax2channeldriver-bo(35466)
https://exchange.xforce.ibmcloud.com/vulnerabilities/35466
Common Vulnerability Exposure (CVE) ID: CVE-2007-3763
BugTraq ID: 24950
http://www.securityfocus.com/bid/24950
Common Vulnerability Exposure (CVE) ID: CVE-2007-3764
XForce ISS Database: asterisk-skinny-driver-dos(35478)
https://exchange.xforce.ibmcloud.com/vulnerabilities/35478
Common Vulnerability Exposure (CVE) ID: CVE-2007-4103
Bugtraq: 20070729 ASA-2007-018: Resource exhaustion vulnerability in IAX2 channel driver (Google Search)
http://www.securityfocus.com/archive/1/475069/100/0/threaded
http://osvdb.org/38197
http://www.securitytracker.com/id?1018472
http://secunia.com/advisories/26274
http://securityreason.com/securityalert/2960
http://www.vupen.com/english/advisories/2007/2701

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.60448
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200802-11 (asterisk)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200802-11.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200802-11. Vulnerability Insight: Multiple vulnerabilities have been found in Asterisk. Solution: All Asterisk users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/asterisk-1.2.17-r1' CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3762 BugTraq ID: 24949 http://www.securityfocus.com/bid/24949 Debian Security Information: DSA-1358 (Google Search) http://www.debian.org/security/2007/dsa-1358 http://security.gentoo.org/glsa/glsa-200802-11.xml http://www.securitytracker.com/id?1018407 http://secunia.com/advisories/26099 http://secunia.com/advisories/29051 SuSE Security Announcement: SUSE-SR:2007:015 (Google Search) http://www.novell.com/linux/security/advisories/2007_15_sr.html http://www.vupen.com/english/advisories/2007/2563 XForce ISS Database: asterisk-iax2channeldriver-bo(35466) https://exchange.xforce.ibmcloud.com/vulnerabilities/35466 Common Vulnerability Exposure (CVE) ID: CVE-2007-3763 BugTraq ID: 24950 http://www.securityfocus.com/bid/24950 Common Vulnerability Exposure (CVE) ID: CVE-2007-3764 XForce ISS Database: asterisk-skinny-driver-dos(35478) https://exchange.xforce.ibmcloud.com/vulnerabilities/35478 Common Vulnerability Exposure (CVE) ID: CVE-2007-4103 Bugtraq: 20070729 ASA-2007-018: Resource exhaustion vulnerability in IAX2 channel driver (Google Search) http://www.securityfocus.com/archive/1/475069/100/0/threaded http://osvdb.org/38197 http://www.securitytracker.com/id?1018472 http://secunia.com/advisories/26274 http://securityreason.com/securityalert/2960 http://www.vupen.com/english/advisories/2007/2701
Copyright	Copyright (C) 2008 E-Soft Inc.