Test ID:	1.3.6.1.4.1.25623.1.0.66336
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 200911-06 (PEAR-Net_Traceroute)
Summary:	The remote host is missing updates announced in;advisory GLSA 200911-06.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 200911-06. Vulnerability Insight: An input sanitation error in PEAR Net_Traceroute might allow remote attackers to execute arbitrary commands. Solution: All PEAR Net_Traceroute users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-php/PEAR-Net_Traceroute-0.21.2' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4025 BugTraq ID: 37094 http://www.securityfocus.com/bid/37094 https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01110.html https://www.redhat.com/archives/fedora-package-announce/2009-November/msg00998.html https://www.redhat.com/archives/fedora-package-announce/2009-November/msg01007.html http://security.gentoo.org/glsa/glsa-200911-06.xml http://www.openwall.com/lists/oss-security/2009/11/23/8 http://osvdb.org/60515 http://secunia.com/advisories/37497 http://secunia.com/advisories/37503 http://www.vupen.com/english/advisories/2009/3321 XForce ISS Database: nettraceroute-traceroute-command-execution(54391) https://exchange.xforce.ibmcloud.com/vulnerabilities/54391
Copyright	Copyright (C) 2009 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.