Test ID:	1.3.6.1.4.1.25623.1.0.57309
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-335-1 (heartbeat)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to heartbeat announced via advisory USN-335-1. A security issue affects the following Ubuntu releases: Ubuntu 5.04 Ubuntu 5.10 Ubuntu 6.06 LTS This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. Yan Rong Ge discovered that heartbeat did not sufficiently verify some packet input data, which could lead to an out-of-boundary memory access. A remote attacker could exploit this to crash the daemon (Denial of Service). Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.04: heartbeat 1.2.3-3ubuntu1.3 Ubuntu 5.10: heartbeat 1.2.3-12ubuntu0.2 Ubuntu 6.06 LTS: heartbeat 1.2.4-2ubuntu0.2 In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-335-1 Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-3121 BugTraq ID: 19516 http://www.securityfocus.com/bid/19516 Debian Security Information: DSA-1151 (Google Search) http://www.debian.org/security/2006/dsa-1151 http://security.gentoo.org/glsa/glsa-200608-23.xml http://www.mandriva.com/security/advisories?name=MDKSA-2006:142 http://secunia.com/advisories/21505 http://secunia.com/advisories/21511 http://secunia.com/advisories/21518 http://secunia.com/advisories/21521 http://secunia.com/advisories/21629 http://www.ubuntu.com/usn/usn-335-1 http://www.vupen.com/english/advisories/2006/3288 XForce ISS Database: heartbeat-packet-dos(28396) https://exchange.xforce.ibmcloud.com/vulnerabilities/28396
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.