ID de Prueba:	1.3.6.1.4.1.25623.1.0.61441
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200808-08 (stunnel)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200808-08.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200808-08. Vulnerability Insight: stunnel does not properly prevent the authentication of a revoked certificate which would be published by OCSP. Solution: All stunnel users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/stunnel-1.2.3' CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-2420 BugTraq ID: 29309 http://www.securityfocus.com/bid/29309 https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00856.html https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00907.html https://www.redhat.com/archives/fedora-package-announce/2008-May/msg00942.html http://security.gentoo.org/glsa/glsa-200808-08.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:168 http://stunnel.mirt.net/pipermail/stunnel-announce/2008-May/000035.html http://secunia.com/advisories/30335 http://secunia.com/advisories/30425 http://secunia.com/advisories/31438 http://www.vupen.com/english/advisories/2008/1569/references XForce ISS Database: stunnel-ocsp-security-bypass(42528) https://exchange.xforce.ibmcloud.com/vulnerabilities/42528
Copyright	Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.