Gentoo Local Security Checks : Gentoo Security Advisory GLSA 201206-08 (wicd)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71575

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 201206-08 (wicd)

Resumen: The remote host is missing updates announced in;advisory GLSA 201206-08.

Descripción: Summary:
The remote host is missing updates announced in
advisory GLSA 201206-08.

Vulnerability Insight:
Multiple vulnerabilities have been found in Wicd, the worst of
which might allow execution of arbitrary code as root.

Solution:
All Wicd users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-misc/wicd-1.7.2.1'

CVSS Score:
6.9

CVSS Vector:
AV:L/AC:M/Au:N/C:C/I:C/A:C

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-0813
49657
http://secunia.com/advisories/49657
51703
http://www.securityfocus.com/bid/51703
GLSA-201206-08
http://security.gentoo.org/glsa/glsa-201206-08.xml
[oss-security] 20120126 CVE request: wicd writes sensitive information in log files (password, passphrase...)
http://www.openwall.com/lists/oss-security/2012/01/26/13
[oss-security] 20120126 Re: CVE request: wicd writes sensitive information in log files (password, passphrase...)
http://www.openwall.com/lists/oss-security/2012/01/26/14
http://bazaar.launchpad.net/~wicd-devel/wicd/experimental/revision/682
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652417
https://launchpad.net/wicd/+announcement/9570
Common Vulnerability Exposure (CVE) ID: CVE-2012-2095
18733
http://www.exploit-db.com/exploits/18733
48759
http://secunia.com/advisories/48759
52987
http://www.securityfocus.com/bid/52987
FEDORA-2012-5858
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079025.html
FEDORA-2012-5909
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079055.html
FEDORA-2012-5923
http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079029.html
http://www.gentoo.org/security/en/glsa/glsa-201206-08.xml
[oss-security] 20120411 CVE id request: wicd
http://www.openwall.com/lists/oss-security/2012/04/11/2
[oss-security] 20120411 Re: CVE id request: wicd
http://www.openwall.com/lists/oss-security/2012/04/11/3
http://bazaar.launchpad.net/~wicd-devel/wicd/experimental/revision/751
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668397
http://www.infosecinstitute.com/courses/ethical-hacking-wicd-0day.html
https://bugs.launchpad.net/wicd/+bug/979221
https://launchpad.net/wicd/+announcement/9888

Copyright Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71575
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 201206-08 (wicd)
Resumen:	The remote host is missing updates announced in;advisory GLSA 201206-08.
Descripción:	Summary: The remote host is missing updates announced in advisory GLSA 201206-08. Vulnerability Insight: Multiple vulnerabilities have been found in Wicd, the worst of which might allow execution of arbitrary code as root. Solution: All Wicd users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-misc/wicd-1.7.2.1' CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0813 49657 http://secunia.com/advisories/49657 51703 http://www.securityfocus.com/bid/51703 GLSA-201206-08 http://security.gentoo.org/glsa/glsa-201206-08.xml [oss-security] 20120126 CVE request: wicd writes sensitive information in log files (password, passphrase...) http://www.openwall.com/lists/oss-security/2012/01/26/13 [oss-security] 20120126 Re: CVE request: wicd writes sensitive information in log files (password, passphrase...) http://www.openwall.com/lists/oss-security/2012/01/26/14 http://bazaar.launchpad.net/~wicd-devel/wicd/experimental/revision/682 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=652417 https://launchpad.net/wicd/+announcement/9570 Common Vulnerability Exposure (CVE) ID: CVE-2012-2095 18733 http://www.exploit-db.com/exploits/18733 48759 http://secunia.com/advisories/48759 52987 http://www.securityfocus.com/bid/52987 FEDORA-2012-5858 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079025.html FEDORA-2012-5909 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079055.html FEDORA-2012-5923 http://lists.fedoraproject.org/pipermail/package-announce/2012-April/079029.html http://www.gentoo.org/security/en/glsa/glsa-201206-08.xml [oss-security] 20120411 CVE id request: wicd http://www.openwall.com/lists/oss-security/2012/04/11/2 [oss-security] 20120411 Re: CVE id request: wicd http://www.openwall.com/lists/oss-security/2012/04/11/3 http://bazaar.launchpad.net/~wicd-devel/wicd/experimental/revision/751 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=668397 http://www.infosecinstitute.com/courses/ethical-hacking-wicd-0day.html https://bugs.launchpad.net/wicd/+bug/979221 https://launchpad.net/wicd/+announcement/9888
Copyright	Copyright (C) 2012 E-Soft Inc.