Test ID:	1.3.6.1.4.1.25623.1.0.53037
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2005:502
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2005:502. Sysreport is a utility that gathers information about a system's hardware and configuration. The information can then be used for diagnostic purposes and debugging. When run by the root user, sysreport includes the contents of the /etc/sysconfig/rhn/up2date configuration file. If up2date has been configured to connect to a proxy server that requires an authentication password, that password is included in plain text in the system report. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-1760 to this issue. Users of sysreport should update to this erratum package, which contains a patch that removes any proxy authentication passwords. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-502.html Risk factor : High CVSS Score: 7.5
Cross-Ref:	BugTraq ID: 13936 Common Vulnerability Exposure (CVE) ID: CVE-2005-1760 1014181 http://securitytracker.com/id?1014181 13936 http://www.securityfocus.com/bid/13936 15675 http://secunia.com/advisories/15675 RHSA-2005:502 http://www.redhat.com/support/errata/RHSA-2005-502.html oval:org.mitre.oval:def:623 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A623 oval:org.mitre.oval:def:9522 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9522
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.