Mandrake Local Security Checks : Mandrake Security Advisory MDVSA-2008:144 (openldap)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.61270
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2008:144 (openldap)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to openldap announced via advisory MDVSA-2008:144. A denial of service vulnerability was discovered in the way the OpenLDAP slapd daemon processed certain network messages. An unauthenticated remote attacker could send a specially crafted request that would crash the slapd daemon (CVE-2008-2952). The updated packages have been patched to correct this issue. Affected: 2007.1, 2008.0, 2008.1, Corporate 3.0, Corporate 4.0, Multi Network Firewall 2.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2008:144 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-2952 http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html BugTraq ID: 30013 http://www.securityfocus.com/bid/30013 Bugtraq: 20080811 rPSA-2008-0249-1 openldap openldap-clients openldap-servers (Google Search) http://www.securityfocus.com/archive/1/495320/100/0/threaded Debian Security Information: DSA-1650 (Google Search) http://www.debian.org/security/2008/dsa-1650 https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00109.html https://www.redhat.com/archives/fedora-package-announce/2008-July/msg00129.html http://security.gentoo.org/glsa/glsa-200808-09.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:144 http://www.zerodayinitiative.com/advisories/ZDI-08-052/ http://www.openwall.com/lists/oss-security/2008/07/01/2 http://www.openwall.com/lists/oss-security/2008/07/13/2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10662 http://www.redhat.com/support/errata/RHSA-2008-0583.html http://www.securitytracker.com/id?1020405 http://secunia.com/advisories/30853 http://secunia.com/advisories/30917 http://secunia.com/advisories/30996 http://secunia.com/advisories/31326 http://secunia.com/advisories/31364 http://secunia.com/advisories/31436 http://secunia.com/advisories/32254 http://secunia.com/advisories/32316 SuSE Security Announcement: SUSE-SR:2008:021 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.html http://www.ubuntu.com/usn/usn-634-1 http://www.vupen.com/english/advisories/2008/1978/references http://www.vupen.com/english/advisories/2008/2268 XForce ISS Database: openldap-bergetnext-dos(43515) https://exchange.xforce.ibmcloud.com/vulnerabilities/43515
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com