ID de Prueba:	1.3.6.1.4.1.25623.1.1.13.2006.178.01
Categoría:	Slackware Local Security Checks
Título:	Slackware: Security Advisory (SSA:2006-178-01)
Resumen:	The remote host is missing an update for the 'kdebase' package(s) announced via the SSA:2006-178-01 advisory.
Descripción:	Summary: The remote host is missing an update for the 'kdebase' package(s) announced via the SSA:2006-178-01 advisory. Vulnerability Insight: New kdebase packages are available for Slackware 10.0, 10.1, 10.2, and -current to fix a security issue with KDM (the KDE login manager) which could be exploited by a local attacker to read any file on the system. The official KDE security advisory may be found here: [link moved to references] More details about this issue may be found in the Common Vulnerabilities and Exposures (CVE) database: [link moved to references] Here are the details from the Slackware 10.2 ChangeLog: +--------------------------+ patches/packages/kdebase-3.4.2-i486-3_slack10.2.tgz: Patched a problem with kdm where it could be abused to read any file on the system. The official KDE security advisory may be found here: [link moved to references] The CVE entry for this issue may be found here: [link moved to references] (* Security fix *) +--------------------------+ Affected Software/OS: 'kdebase' package(s) on Slackware 10.0, Slackware 10.1, Slackware 10.2, Slackware current. Solution: Please install the updated package(s). CVSS Score: 4.0 CVSS Vector: AV:L/AC:H/Au:N/C:C/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-2449 1016297 http://securitytracker.com/id?1016297 18431 http://www.securityfocus.com/bid/18431 20060614 [KDE Security Advisory] KDM symlink attack vulnerability http://www.securityfocus.com/archive/1/437133/100/0/threaded 20060615 rPSA-2006-0106-1 kdebase http://www.securityfocus.com/archive/1/437322/100/0/threaded 20602 http://secunia.com/advisories/20602 20660 http://secunia.com/advisories/20660 20674 http://secunia.com/advisories/20674 20702 http://secunia.com/advisories/20702 20785 http://secunia.com/advisories/20785 20869 http://secunia.com/advisories/20869 20890 http://secunia.com/advisories/20890 21662 http://secunia.com/advisories/21662 26511 http://www.osvdb.org/26511 ADV-2006-2355 http://www.vupen.com/english/advisories/2006/2355 DSA-1156 http://www.debian.org/security/2006/dsa-1156 GLSA-200606-23 http://www.gentoo.org/security/en/glsa/glsa-200606-23.xml MDKSA-2006:105 http://www.mandriva.com/security/advisories?name=MDKSA-2006:105 MDKSA-2006:106 http://www.mandriva.com/security/advisories?name=MDKSA-2006:106 RHSA-2006:0548 http://www.redhat.com/support/errata/RHSA-2006-0548.html SSA:2006-178-01 http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.444467 SUSE-SA:2006:039 http://www.novell.com/linux/security/advisories/2006_39_kdm.html USN-301-1 https://usn.ubuntu.com/301-1/ http://www.kde.org/info/security/advisory-20060614-1.txt kde-kdm-symlink(27181) https://exchange.xforce.ibmcloud.com/vulnerabilities/27181 oval:org.mitre.oval:def:9844 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9844
Copyright	Copyright (C) 2022 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.