 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.60614 |
| Category: | Fedora Local Security Checks |
| Title: | Fedora Core 8 FEDORA-2008-2767 (namazu) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to namazu announced via advisory FEDORA-2008-2767. Namazu is a full-text search engine software intended for easy use. Not only it works as CGI program for small or medium scale WWW search engine, but also works as personal use such as search system for local HDD. ChangeLog: * Mon Mar 24 2008 Akira TAGOH - 2.0.18-1 - security fix (#438664) References: [ 1 ] Bug #438664 - CVE-2008-1468 namazu XSS flaw https://bugzilla.redhat.com/show_bug.cgi?id=438664 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update namazu' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2008-2767 Risk factor : Medium CVSS Score: 4.3 |
| Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2008-1468 BugTraq ID: 28380 http://www.securityfocus.com/bid/28380 https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00575.html https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00654.html HPdes Security Advisory: HPSBMA02492 http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c02029444 HPdes Security Advisory: HPSBMA02525 http://marc.info/?l=bugtraq&m=127239985506823&w=2 HPdes Security Advisory: SSRT100079 HPdes Security Advisory: SSRT100083 http://jvn.jp/jp/JVN%2300892830/index.html http://secunia.com/advisories/29386 http://secunia.com/advisories/29561 http://secunia.com/advisories/31687 http://secunia.com/advisories/39645 SuSE Security Announcement: SUSE-SR:2008:017 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html XForce ISS Database: namazu-character-encoding-xss(41360) https://exchange.xforce.ibmcloud.com/vulnerabilities/41360 |
| Copyright | Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |