ID de Prueba:	1.3.6.1.4.1.25623.1.0.831338
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Update for banshee MDVSA-2011:034 (banshee)
Resumen:	The remote host is missing an update for the 'banshee'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'banshee' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability has been found and corrected in banshee: The (1) banshee-1 and (2) muinshee scripts in Banshee 1.8.0 and earlier place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory (CVE-2010-3998). Packages for 2009.0 are provided as of the Extended Maintenance Program. The updated packages have been patched to correct this issue. Affected Software/OS: banshee on Mandriva Linux 2009.0, Mandriva Linux 2009.0/X86_64, Mandriva Linux 2010.0, Mandriva Linux 2010.0/X86_64, Mandriva Linux 2010.1, Mandriva Linux 2010.1/X86_64 Solution: Please Install the Updated Packages. CVSS Score: 6.9 CVSS Vector: AV:L/AC:M/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3998 BugTraq ID: 44752 http://www.securityfocus.com/bid/44752 http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050747.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050744.html http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050756.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:034 http://secunia.com/advisories/42234 http://secunia.com/advisories/42237 http://www.vupen.com/english/advisories/2010/2964
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.