ID de Prueba:	1.3.6.1.4.1.25623.1.0.63766
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDVSA-2009:088 (wireshark)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to wireshark announced via advisory MDVSA-2009:088. Multiple vulnerabilities has been identified and corrected in wireshark: o The PROFINET dissector was vulnerable to a format string overflow (CVE-2009-1210). o The Check Point High-Availability Protocol (CPHAP) dissecto could crash (CVE-2009-1268). o Wireshark could crash while loading a Tektronix .rf5 file (CVE-2009-1269). This update provides Wireshark 1.0.7, which is not vulnerable to these issues. Affected: 2008.1, 2009.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDVSA-2009:088 http://www.wireshark.org/security/wnpa-sec-2009-02.html CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-1210 BugTraq ID: 34291 http://www.securityfocus.com/bid/34291 Bugtraq: 20090417 rPSA-2009-0062-1 tshark wireshark (Google Search) http://www.securityfocus.com/archive/1/502745/100/0/threaded Debian Security Information: DSA-1785 (Google Search) http://www.debian.org/security/2009/dsa-1785 https://www.exploit-db.com/exploits/8308 https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00675.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01167.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01213.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:088 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5976 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9526 http://www.redhat.com/support/errata/RHSA-2009-1100.html http://secunia.com/advisories/34542 http://secunia.com/advisories/34778 http://secunia.com/advisories/34970 http://secunia.com/advisories/35133 http://secunia.com/advisories/35224 http://secunia.com/advisories/35416 http://secunia.com/advisories/35464 SuSE Security Announcement: SUSE-SR:2009:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2009-06/msg00003.html XForce ISS Database: wireshark-pndcp-format-string(49512) https://exchange.xforce.ibmcloud.com/vulnerabilities/49512 Common Vulnerability Exposure (CVE) ID: CVE-2009-1268 BugTraq ID: 34457 http://www.securityfocus.com/bid/34457 Debian Security Information: DSA-1942 (Google Search) http://www.debian.org/security/2009/dsa-1942 https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=3269 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10876 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5335 http://www.securitytracker.com/id?1022027 http://secunia.com/advisories/37477 XForce ISS Database: wireshark-cphap-dos(49815) https://exchange.xforce.ibmcloud.com/vulnerabilities/49815 Common Vulnerability Exposure (CVE) ID: CVE-2009-1269 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10642 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5748 XForce ISS Database: wireshark-rf5file-dos(49816) https://exchange.xforce.ibmcloud.com/vulnerabilities/49816
Copyright	Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.