Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201110-07 (vsftpd)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.70770

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201110-07 (vsftpd)

Resumen: The remote host is missing updates announced in;advisory GLSA 201110-07.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 201110-07.

Vulnerability Insight:
A Denial of Service vulnerability was found in vsftpd.

Solution:
All vsftpd users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-ftp/vsftpd-2.3.4'

CVSS Score:
4.0

CVSS Vector:
AV:N/AC:L/Au:S/C:N/I:N/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-0762
BugTraq ID: 46617
http://www.securityfocus.com/bid/46617
Bugtraq: 20110301 vsftpd 2.3.2 remote denial-of-service (Google Search)
http://www.securityfocus.com/archive/1/516748/100/0/threaded
CERT/CC vulnerability note: VU#590604
http://www.kb.cert.org/vuls/id/590604
Debian Security Information: DSA-2305 (Google Search)
http://www.debian.org/security/2011/dsa-2305
http://www.exploit-db.com/exploits/16270
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055957.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055882.html
http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055881.html
HPdes Security Advisory: HPSBMU02752
http://marc.info/?l=bugtraq&m=133226187115472&w=2
HPdes Security Advisory: SSRT100802
http://jvn.jp/en/jp/JVN37417423/index.html
http://www.mandriva.com/security/advisories?name=MDVSA-2011:049
http://cxib.net/stuff/vspoc232.c
http://www.redhat.com/support/errata/RHSA-2011-0337.html
http://www.securitytracker.com/id?1025186
http://securityreason.com/securityalert/8109
http://securityreason.com/achievement_securityalert/95
SuSE Security Announcement: SUSE-SR:2011:009 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html
http://www.ubuntu.com/usn/USN-1098-1
http://www.vupen.com/english/advisories/2011/0547
http://www.vupen.com/english/advisories/2011/0639
http://www.vupen.com/english/advisories/2011/0668
http://www.vupen.com/english/advisories/2011/0713
XForce ISS Database: vsftpd-vsffilenamepassesfilter-dos(65873)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65873

Copyright Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.70770
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201110-07 (vsftpd)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201110-07.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201110-07. Vulnerability Insight: A Denial of Service vulnerability was found in vsftpd. Solution: All vsftpd users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-ftp/vsftpd-2.3.4' CVSS Score: 4.0 CVSS Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0762 BugTraq ID: 46617 http://www.securityfocus.com/bid/46617 Bugtraq: 20110301 vsftpd 2.3.2 remote denial-of-service (Google Search) http://www.securityfocus.com/archive/1/516748/100/0/threaded CERT/CC vulnerability note: VU#590604 http://www.kb.cert.org/vuls/id/590604 Debian Security Information: DSA-2305 (Google Search) http://www.debian.org/security/2011/dsa-2305 http://www.exploit-db.com/exploits/16270 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055957.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055882.html http://lists.fedoraproject.org/pipermail/package-announce/2011-March/055881.html HPdes Security Advisory: HPSBMU02752 http://marc.info/?l=bugtraq&m=133226187115472&w=2 HPdes Security Advisory: SSRT100802 http://jvn.jp/en/jp/JVN37417423/index.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:049 http://cxib.net/stuff/vspoc232.c http://www.redhat.com/support/errata/RHSA-2011-0337.html http://www.securitytracker.com/id?1025186 http://securityreason.com/securityalert/8109 http://securityreason.com/achievement_securityalert/95 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html http://www.ubuntu.com/usn/USN-1098-1 http://www.vupen.com/english/advisories/2011/0547 http://www.vupen.com/english/advisories/2011/0639 http://www.vupen.com/english/advisories/2011/0668 http://www.vupen.com/english/advisories/2011/0713 XForce ISS Database: vsftpd-vsffilenamepassesfilter-dos(65873) https://exchange.xforce.ibmcloud.com/vulnerabilities/65873
Copyright	Copyright (C) 2012 E-Soft Inc.