ID de Prueba:	1.3.6.1.4.1.25623.1.0.60890
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: python23
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following packages are affected: python23 python24 python25 CVE-2008-1721 Integer signedness error in the zlib extension module in Python 2.5.2 and earlier allows remote attackers to execute arbitrary code via a negative signed integer, which triggers insufficient memory allocation and a buffer overflow. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1721 http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html BugTraq ID: 28715 http://www.securityfocus.com/bid/28715 Bugtraq: 20080409 IOActive Security Advisory: Buffer overflow in Python zlib extension module (Google Search) http://www.securityfocus.com/archive/1/490690/100/0/threaded Bugtraq: 20091120 VMSA-2009-0016 VMware vCenter and ESX update release and vMA patch release address multiple security issue in third party components (Google Search) http://www.securityfocus.com/archive/1/507985/100/0/threaded Debian Security Information: DSA-1551 (Google Search) http://www.debian.org/security/2008/dsa-1551 Debian Security Information: DSA-1620 (Google Search) http://www.debian.org/security/2008/dsa-1620 http://security.gentoo.org/glsa/glsa-200807-01.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:085 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8249 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8494 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9407 http://www.securitytracker.com/id?1019823 http://secunia.com/advisories/29889 http://secunia.com/advisories/29955 http://secunia.com/advisories/30872 http://secunia.com/advisories/31255 http://secunia.com/advisories/31358 http://secunia.com/advisories/31365 http://secunia.com/advisories/33937 http://secunia.com/advisories/37471 http://secunia.com/advisories/38675 http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.525289 http://securityreason.com/securityalert/3802 http://www.ubuntu.com/usn/usn-632-1 http://www.vupen.com/english/advisories/2008/1229/references http://www.vupen.com/english/advisories/2009/3316 XForce ISS Database: zlib-pystringfromstringandsize-bo(41748) https://exchange.xforce.ibmcloud.com/vulnerabilities/41748
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.