| |||||||||||||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.67540 |
| Categoría: | Debian Local Security Checks |
| Título: | Debian Security Advisory DSA 2056-1 (zonecheck) |
| Resumen: | Debian Security Advisory DSA 2056-1 (zonecheck) |
| Descripción: | The remote host is missing an update to zonecheck announced via advisory DSA 2056-1. It was discovered that in zonecheck, a tool to check DNS configurations, the CGI does not perform sufficient sanitation of user input an attacker can take advantage of this and pass script code in order to perform cross-site scripting attacks. For the stable distribution (lenny), this problem has been fixed in version 2.0.4-13lenny1. For the testing distribution (squeeze), this problem has been fixed in version 2.1.1-1. For the testing distribution (sid), this problem has been fixed in version 2.1.1-1. We recommend that you upgrade your zonecheck packages. Solution: http://www.securityspace.com/smysecure/catid.html?in=DSA%202056-1 |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-2155 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=583290 Debian Security Information: DSA-2056 (Google Search) http://www.debian.org/security/2010/dsa-2056 http://secunia.com/advisories/40083 http://www.vupen.com/english/advisories/2010/1351 http://www.vupen.com/english/advisories/2010/1354 Common Vulnerability Exposure (CVE) ID: CVE-2009-4882 http://www.xssed.com/mirror/61096/ http://secunia.com/advisories/39940 |
| Copyright | Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com |
| Esta es sólo una de 32582 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |
|
Auditorías de Seguridad | DNS Administrado | Monitoreo de Red | Analizador de Sitio | Informes de Investigación de Internet
Prueba de Web | Whois
© 1998-2013 E-Soft Inc. Todos los derechos reservados.