ID de Prueba:	1.3.6.1.4.1.25623.1.0.63803
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200904-09 (mit-krb5)
Resumen:	The remote host is missing updates announced in;advisory GLSA 200904-09.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 200904-09. Vulnerability Insight: Multiple vulnerabilities in MIT Kerberos 5 might allow remote unauthenticated users to execute arbitrary code with root privileges. Solution: All MIT Kerberos 5 users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-crypt/mit-krb5-1.6.3-r6' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0844 http://lists.apple.com/archives/security-announce/2009/May/msg00002.html BugTraq ID: 34408 http://www.securityfocus.com/bid/34408 Bugtraq: 20090407 MITKRB5-SA-2009-001: multiple vulnerabilities in SPNEGO, ASN.1 decoder [CVE-2009-0844 CVE-2009-0845 CVE-2009-0847] (Google Search) http://www.securityfocus.com/archive/1/502526/100/0/threaded Bugtraq: 20090407 rPSA-2009-0058-1 krb5 krb5-server krb5-services krb5-test krb5-workstation (Google Search) http://www.securityfocus.com/archive/1/502546/100/0/threaded Cert/CC Advisory: TA09-133A http://www.us-cert.gov/cas/techalerts/TA09-133A.html CERT/CC vulnerability note: VU#662091 http://www.kb.cert.org/vuls/id/662091 https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00205.html https://www.redhat.com/archives/fedora-package-announce/2009-April/msg00206.html http://security.gentoo.org/glsa/glsa-200904-09.xml http://www.mandriva.com/security/advisories?name=MDVSA-2009:098 http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5047180.html http://support.novell.com/docs/Readmes/InfoDocument/patchbuilder/readme_5047181.html http://wiki.rpath.com/wiki/Advisories:rPSA-2009-0058 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6339 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9474 http://www.redhat.com/support/errata/RHSA-2009-0408.html http://www.securitytracker.com/id?1021867 http://secunia.com/advisories/34594 http://secunia.com/advisories/34617 http://secunia.com/advisories/34622 http://secunia.com/advisories/34628 http://secunia.com/advisories/34630 http://secunia.com/advisories/34637 http://secunia.com/advisories/34640 http://secunia.com/advisories/34734 http://secunia.com/advisories/35074 http://sunsolve.sun.com/search/document.do?assetkey=1-26-256728-1 http://www.ubuntu.com/usn/usn-755-1 http://www.vupen.com/english/advisories/2009/0960 http://www.vupen.com/english/advisories/2009/0976 http://www.vupen.com/english/advisories/2009/1057 http://www.vupen.com/english/advisories/2009/1106 http://www.vupen.com/english/advisories/2009/1297 http://www.vupen.com/english/advisories/2009/2248 Common Vulnerability Exposure (CVE) ID: CVE-2009-0845 BugTraq ID: 34257 http://www.securityfocus.com/bid/34257 http://www.mandriva.com/security/advisories?name=MDVSA-2009:082 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10044 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6449 http://secunia.com/advisories/34347 http://www.vupen.com/english/advisories/2009/0847 XForce ISS Database: kerberos-spnego-dos(49448) https://exchange.xforce.ibmcloud.com/vulnerabilities/49448 Common Vulnerability Exposure (CVE) ID: CVE-2009-0846 BugTraq ID: 34409 http://www.securityfocus.com/bid/34409 Bugtraq: 20090407 MITKRB5-SA-2009-002: ASN.1 decoder frees uninitialized pointer [CVE-2009-0846] (Google Search) http://www.securityfocus.com/archive/1/502527/100/0/threaded Bugtraq: 20090701 VMSA-2009-0008 ESX Service Console update for krb5 (Google Search) http://www.securityfocus.com/archive/1/504683/100/0/threaded HPdes Security Advisory: HPSBOV02682 http://marc.info/?l=bugtraq&m=130497213107107&w=2 HPdes Security Advisory: HPSBUX02421 http://marc.info/?l=bugtraq&m=124896429301168&w=2 HPdes Security Advisory: SSRT090047 HPdes Security Advisory: SSRT100495 http://lists.vmware.com/pipermail/security-announce/2009/000059.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10694 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5483 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6301 RedHat Security Advisories: RHSA-2009:0409 http://rhn.redhat.com/errata/RHSA-2009-0409.html RedHat Security Advisories: RHSA-2009:0410 http://rhn.redhat.com/errata/RHSA-2009-0410.html http://www.securitytracker.com/id?1021994 http://secunia.com/advisories/34598 http://secunia.com/advisories/35667 http://www.vupen.com/english/advisories/2009/2084 Common Vulnerability Exposure (CVE) ID: CVE-2009-0847 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6387 http://www.securitytracker.com/id?1021993
Copyright	Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.