Mageia Linux Local Security Checks : Mageia: Security Advisory (MGASA-2013-0221)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.1.10.2013.0221

Categoría: Mageia Linux Local Security Checks

Título: Mageia: Security Advisory (MGASA-2013-0221)

Resumen: The remote host is missing an update for the 'mediawiki' package(s) announced via the MGASA-2013-0221 advisory.

Descripción: Summary:
The remote host is missing an update for the 'mediawiki' package(s) announced via the MGASA-2013-0221 advisory.

Vulnerability Insight:
MediaWiki user Marco discovered that security checks for file uploads were
not being run when the file was uploaded in chunks through the API. This
option has been available to users who can upload files since MediaWiki
1.19 (CVE-2013-2114).

Affected Software/OS:
'mediawiki' package(s) on Mageia 3.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2013-2114
http://security.gentoo.org/glsa/glsa-201310-21.xml
http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-May/000131.html
http://www.openwall.com/lists/oss-security/2013/05/24/3
http://secunia.com/advisories/55433

Copyright Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.1.10.2013.0221
Categoría:	Mageia Linux Local Security Checks
Título:	Mageia: Security Advisory (MGASA-2013-0221)
Resumen:	The remote host is missing an update for the 'mediawiki' package(s) announced via the MGASA-2013-0221 advisory.
Descripción:	Summary: The remote host is missing an update for the 'mediawiki' package(s) announced via the MGASA-2013-0221 advisory. Vulnerability Insight: MediaWiki user Marco discovered that security checks for file uploads were not being run when the file was uploaded in chunks through the API. This option has been available to users who can upload files since MediaWiki 1.19 (CVE-2013-2114). Affected Software/OS: 'mediawiki' package(s) on Mageia 3. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2013-2114 http://security.gentoo.org/glsa/glsa-201310-21.xml http://lists.wikimedia.org/pipermail/mediawiki-announce/2013-May/000131.html http://www.openwall.com/lists/oss-security/2013/05/24/3 http://secunia.com/advisories/55433
Copyright	Copyright (C) 2022 Greenbone AG