ID de Prueba:	1.3.6.1.4.1.25623.1.0.61418
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2008:175 (yelp)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to yelp announced via advisory MDVSA-2008:175. A format string vulnerability was discovered in yelp after version 2.19.90 and before 2.24 that could allow remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command-line or via URI helpers in Firefox, Evolution, or possibly other programs (CVE-2008-3533). The updated packages have been patched to correct this issue. Affected: 2008.0, 2008.1 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2008:175 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3533 BugTraq ID: 30690 http://www.securityfocus.com/bid/30690 https://www.redhat.com/archives/fedora-package-announce/2008-September/msg00222.html http://www.mandriva.com/security/advisories?name=MDVSA-2008:175 http://secunia.com/advisories/31465 http://secunia.com/advisories/31620 http://secunia.com/advisories/31834 http://secunia.com/advisories/32629 SuSE Security Announcement: SUSE-SR:2008:024 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-11/msg00000.html http://www.ubuntu.com/usn/usn-638-1 http://www.vupen.com/english/advisories/2008/2393 XForce ISS Database: yelp-uri-format-string(44449) https://exchange.xforce.ibmcloud.com/vulnerabilities/44449
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.