Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200805-21 (roundup)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.61112

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200805-21 (roundup)

Resumen: The remote host is missing updates announced in;advisory GLSA 200805-21.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 200805-21.

Vulnerability Insight:
A vulnerability in Roundup allows for bypassing permission restrictions.

Solution:
All Roundup users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=www-apps/roundup-1.4.4-r1'

CVSS Score:
6.4

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:N

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2008-1474
BugTraq ID: 28239
http://www.securityfocus.com/bid/28239
Debian Security Information: DSA-1554 (Google Search)
http://www.debian.org/security/2008/dsa-1554
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00264.html
https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00375.html
http://security.gentoo.org/glsa/glsa-200805-21.xml
https://bugzilla.redhat.com/show_bug.cgi?id=436546
http://secunia.com/advisories/29336
http://secunia.com/advisories/29375
http://secunia.com/advisories/29848
http://secunia.com/advisories/30274
http://www.vupen.com/english/advisories/2008/0891
XForce ISS Database: roundup-multiple-unspecified(41241)
https://exchange.xforce.ibmcloud.com/vulnerabilities/41241
Common Vulnerability Exposure (CVE) ID: CVE-2008-1475
BugTraq ID: 28238
http://www.securityfocus.com/bid/28238
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00452.html
https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00478.html
http://secunia.com/advisories/32805
XForce ISS Database: roundup-xmlrpc-security-bypass(41240)
https://exchange.xforce.ibmcloud.com/vulnerabilities/41240

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.61112
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200805-21 (roundup)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200805-21.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200805-21. Vulnerability Insight: A vulnerability in Roundup allows for bypassing permission restrictions. Solution: All Roundup users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=www-apps/roundup-1.4.4-r1' CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1474 BugTraq ID: 28239 http://www.securityfocus.com/bid/28239 Debian Security Information: DSA-1554 (Google Search) http://www.debian.org/security/2008/dsa-1554 https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00264.html https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00375.html http://security.gentoo.org/glsa/glsa-200805-21.xml https://bugzilla.redhat.com/show_bug.cgi?id=436546 http://secunia.com/advisories/29336 http://secunia.com/advisories/29375 http://secunia.com/advisories/29848 http://secunia.com/advisories/30274 http://www.vupen.com/english/advisories/2008/0891 XForce ISS Database: roundup-multiple-unspecified(41241) https://exchange.xforce.ibmcloud.com/vulnerabilities/41241 Common Vulnerability Exposure (CVE) ID: CVE-2008-1475 BugTraq ID: 28238 http://www.securityfocus.com/bid/28238 https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00452.html https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00478.html http://secunia.com/advisories/32805 XForce ISS Database: roundup-xmlrpc-security-bypass(41240) https://exchange.xforce.ibmcloud.com/vulnerabilities/41240
Copyright	Copyright (C) 2008 E-Soft Inc.