ID de Prueba:	1.3.6.1.4.1.25623.1.0.60841
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2008:083 (audit)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to audit announced via advisory MDVSA-2008:083. Joe Nall reported a stack-based buffer overflow in Audit's log handling that could allow remote attackers to execute arbitrary code via a long command argument (CVE-2008-1628). The updated packages have been patched to correct this issue. Affected: 2008.0, 2008.1 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2008:083 Risk factor : Medium CVSS Score: 4.1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1628 BugTraq ID: 28524 http://www.securityfocus.com/bid/28524 https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00200.html http://security.gentoo.org/glsa/glsa-200807-14.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:083 https://www.redhat.com/archives/linux-audit/2008-March/msg00138.html http://www.securitytracker.com/id?1019824 http://secunia.com/advisories/29617 http://secunia.com/advisories/29754 http://secunia.com/advisories/29957 http://secunia.com/advisories/31316 SuSE Security Announcement: SUSE-SR:2008:010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00011.html http://www.vupen.com/english/advisories/2008/1052/references XForce ISS Database: linuxaudit-auditlogusercommand-bo(41576) https://exchange.xforce.ibmcloud.com/vulnerabilities/41576
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.