 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.1.10.2015.0156 |
| Categoría: | Mageia Linux Local Security Checks |
| Título: | Mageia: Security Advisory (MGASA-2015-0156) |
| Resumen: | The remote host is missing an update for the 'mono' package(s) announced via the MGASA-2015-0156 advisory. |
| Descripción: | Summary: The remote host is missing an update for the 'mono' package(s) announced via the MGASA-2015-0156 advisory. Vulnerability Insight: A TLS impersonation attack was discovered in Mono's TLS stack by researchers at Inria (CVE-2015-2318). During checks on the TLS stack, they have discovered two further issues which have been fixed, a vulnerability to a protocol downgrade attack (CVE-2015-2319) and SSLv2 support still being available (CVE-2013-2320). Affected Software/OS: 'mono' package(s) on Mageia 4. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2015-2318 BugTraq ID: 73253 http://www.securityfocus.com/bid/73253 Debian Security Information: DSA-3202 (Google Search) https://www.debian.org/security/2015/dsa-3202 https://mitls.org/pages/attacks/SMACK#skip http://www.openwall.com/lists/oss-security/2015/03/17/9 http://www.ubuntu.com/usn/USN-2547-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-2319 BugTraq ID: 73250 http://www.securityfocus.com/bid/73250 https://mitls.org/pages/attacks/SMACK#freak Common Vulnerability Exposure (CVE) ID: CVE-2015-2320 BugTraq ID: 73256 http://www.securityfocus.com/bid/73256 |
| Copyright | Copyright (C) 2022 Greenbone AG |
| Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |