Test ID:	1.3.6.1.4.1.25623.1.0.70815
Category:	Gentoo Local Security Checks
Title:	Gentoo Security Advisory GLSA 201201-14 (mit-krb5-appl)
Summary:	The remote host is missing updates announced in;advisory GLSA 201201-14.
Description:	Summary: The remote host is missing updates announced in advisory GLSA 201201-14. Vulnerability Insight: Multiple vulnerabilities have been found in MIT Kerberos 5 Applications, the most severe of which may allow execution of arbitrary code. Solution: All MIT Kerberos 5 Applications users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=app-crypt/mit-krb5-appl-1.0.2-r1' CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1526 BugTraq ID: 48571 http://www.securityfocus.com/bid/48571 Bugtraq: 20110705 MITKRB5-SA-2011-005 FTP daemon fails to set effective group ID [CVE-2011-1526] (Google Search) http://www.securityfocus.com/archive/1/518733/100/0/threaded Debian Security Information: DSA-2283 (Google Search) http://www.debian.org/security/2011/dsa-2283 http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062681.html http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062699.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:117 http://www.osvdb.org/73617 http://www.redhat.com/support/errata/RHSA-2011-0920.html http://secunia.com/advisories/45145 http://secunia.com/advisories/45157 http://secunia.com/advisories/48101 http://securityreason.com/securityalert/8301 SuSE Security Announcement: SUSE-SU-2012:0010 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00002.html SuSE Security Announcement: SUSE-SU-2012:0018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00004.html SuSE Security Announcement: SUSE-SU-2012:0042 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00010.html SuSE Security Announcement: SUSE-SU-2012:0050 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00011.html SuSE Security Announcement: openSUSE-SU-2011:1169 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-10/msg00009.html SuSE Security Announcement: openSUSE-SU-2012:0019 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00005.html SuSE Security Announcement: openSUSE-SU-2012:0051 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00014.html XForce ISS Database: kerberos-krb5appl-priv-esc(68398) https://exchange.xforce.ibmcloud.com/vulnerabilities/68398 Common Vulnerability Exposure (CVE) ID: CVE-2011-4862 Bugtraq: 20111226 MITKRB5-SA-2011-008 buffer overflow in telnetd [CVE-2011-4862] (Google Search) http://archives.neohapsis.com/archives/bugtraq/2011-12/0172.html Debian Security Information: DSA-2372 (Google Search) http://www.debian.org/security/2011/dsa-2372 Debian Security Information: DSA-2373 (Google Search) http://www.debian.org/security/2011/dsa-2373 Debian Security Information: DSA-2375 (Google Search) http://www.debian.org/security/2011/dsa-2375 http://www.exploit-db.com/exploits/18280/ http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071627.html http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071640.html FreeBSD Security Advisory: FreeBSD-SA-11:08 http://security.freebsd.org/advisories/FreeBSD-SA-11:08.telnetd.asc http://www.mandriva.com/security/advisories?name=MDVSA-2011:195 http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006117.html http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006118.html http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006119.html http://lists.freebsd.org/pipermail/freebsd-security/2011-December/006120.html http://osvdb.org/78020 http://www.redhat.com/support/errata/RHSA-2011-1851.html http://www.redhat.com/support/errata/RHSA-2011-1852.html http://www.redhat.com/support/errata/RHSA-2011-1853.html http://www.redhat.com/support/errata/RHSA-2011-1854.html http://www.securitytracker.com/id?1026460 http://www.securitytracker.com/id?1026463 http://secunia.com/advisories/46239 http://secunia.com/advisories/47341 http://secunia.com/advisories/47348 http://secunia.com/advisories/47357 http://secunia.com/advisories/47359 http://secunia.com/advisories/47373 http://secunia.com/advisories/47374 http://secunia.com/advisories/47397 http://secunia.com/advisories/47399 http://secunia.com/advisories/47441 SuSE Security Announcement: SUSE-SU-2012:0024 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00007.html SuSE Security Announcement: SUSE-SU-2012:0056 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-01/msg00015.html XForce ISS Database: multiple-telnetd-bo(71970) https://exchange.xforce.ibmcloud.com/vulnerabilities/71970
Copyright	Copyright (C) 2012 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.