ID de Prueba:	1.3.6.1.4.1.25623.1.0.71863
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: emacs
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory.
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory. Vulnerability Insight: The following package is affected: emacs CVE-2012-3479 lisp/files.el in Emacs 23.2, 23.3, 23.4, and 24.1 automatically executes eval forms in local-variable sections when the enable-local-variables option is set to :safe, which allows user-assisted remote attackers to execute arbitrary Emacs Lisp code via a crafted file. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-3479 1027375 http://www.securitytracker.com/id?1027375 50157 http://secunia.com/advisories/50157 50801 http://secunia.com/advisories/50801 54969 http://www.securityfocus.com/bid/54969 DSA-2603 http://www.debian.org/security/2013/dsa-2603 MDVSA-2013:076 http://www.mandriva.com/security/advisories?name=MDVSA-2013:076 SSA:2012-228-02 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.420006 USN-1586-1 http://www.ubuntu.com/usn/USN-1586-1 [oss-security] 20120812 Re: Security flaw in GNU Emacs file-local variables http://www.openwall.com/lists/oss-security/2012/08/13/2 [oss-security] 20120813 Security flaw in GNU Emacs file-local variables http://www.openwall.com/lists/oss-security/2012/08/13/1 http://debbugs.gnu.org/cgi/bugreport.cgi?bug=12155 openSUSE-SU-2012:1348 http://lists.opensuse.org/opensuse-updates/2012-10/msg00057.html
Copyright	Copyright (C) 2012 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.