ID de Prueba:	1.3.6.1.4.1.25623.1.0.61255
Categoría:	Red Hat Local Security Checks
Título:	RedHat Security Advisory RHSA-2008:0583
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory RHSA-2008:0583. OpenLDAP is an open source suite of Lightweight Directory Access Protocol (LDAP) applications and development tools. LDAP is a set of protocols for accessing directory services. A denial of service flaw was found in the way the OpenLDAP slapd daemon processed certain network messages. An unauthenticated remote attacker could send a specially crafted request that would crash the slapd daemon. (CVE-2008-2952) Users of openldap should upgrade to these updated packages, which contain a backported patch to correct this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2008-0583.html http://www.redhat.com/security/updates/classification/#important Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-2952 http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html BugTraq ID: 30013 http://www.securityfocus.com/bid/30013 Bugtraq: 20080811 rPSA-2008-0249-1 openldap openldap-clients openldap-servers (Google Search) http://www.securityfocus.com/archive/1/495320/100/0/threaded Debian Security Information: DSA-1650 (Google Search) http://www.debian.org/security/2008/dsa-1650 https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00109.html https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00129.html http://security.gentoo.org/glsa/glsa-200808-09.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:144 http://www.zerodayinitiative.com/advisories/ZDI-08-052/ http://www.openwall.com/lists/oss-security/2008/07/01/2 http://www.openwall.com/lists/oss-security/2008/07/13/2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10662 http://www.redhat.com/support/errata/RHSA-2008-0583.html http://www.securitytracker.com/id?1020405 http://secunia.com/advisories/30853 http://secunia.com/advisories/30917 http://secunia.com/advisories/30996 http://secunia.com/advisories/31326 http://secunia.com/advisories/31364 http://secunia.com/advisories/31436 http://secunia.com/advisories/32254 http://secunia.com/advisories/32316 SuSE Security Announcement: SUSE-SR:2008:021 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.html http://www.ubuntu.com/usn/usn-634-1 http://www.vupen.com/english/advisories/2008/1978/references http://www.vupen.com/english/advisories/2008/2268 XForce ISS Database: openldap-bergetnext-dos(43515) https://exchange.xforce.ibmcloud.com/vulnerabilities/43515
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.