Test Kennung:	1.3.6.1.4.1.25623.1.0.53985
Kategorie:	CGI abuses
Titel:	S9Y Serendipity XML-RPC for PHP Remote Code Injection
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: XML-RPC for PHP, used by Serendipity, is thought to be affected by a remote code injection vulnerability that allows an attacker to execute arbitrary PHP code on the remote system. Versions prior to 0.8.2 are thought to be vulnerable. Solution : Upgrade to 0.8.2 or later. Risk factor : High CVSS Score: 7.5
Querverweis:	BugTraq ID: 14088 Common Vulnerability Exposure (CVE) ID: CVE-2005-1921 http://www.securityfocus.com/bid/14088 Bugtraq: 20050629 Advisory 02/2005: Remote code execution in Serendipity (Google Search) http://marc.info/?l=bugtraq&m=112008638320145&w=2 Bugtraq: 20050629 [DRUPAL-SA-2005-003] Drupal 4.6.2 / 4.5.4 fixes critical XML-RPC issue (Google Search) http://marc.info/?l=bugtraq&m=112015336720867&w=2 Debian Security Information: DSA-745 (Google Search) http://www.debian.org/security/2005/dsa-745 Debian Security Information: DSA-746 (Google Search) http://www.debian.org/security/2005/dsa-746 Debian Security Information: DSA-747 (Google Search) http://www.debian.org/security/2005/dsa-747 Debian Security Information: DSA-789 (Google Search) http://www.debian.org/security/2005/dsa-789 http://security.gentoo.org/glsa/glsa-200507-01.xml http://security.gentoo.org/glsa/glsa-200507-06.xml http://security.gentoo.org/glsa/glsa-200507-07.xml HPdes Security Advisory: HPSBTU02083 http://www.securityfocus.com/archive/1/419064/100/0/threaded HPdes Security Advisory: SSRT051069 http://www.mandriva.com/security/advisories?name=MDKSA-2005:109 http://pear.php.net/package/XML_RPC/download/1.3.1 http://www.gulftech.org/?node=research&article_id=00087-07012005 http://www.hardened-php.net/advisory-022005.php https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350 http://www.redhat.com/support/errata/RHSA-2005-564.html http://securitytracker.com/id?1015336 http://secunia.com/advisories/15810 http://secunia.com/advisories/15852 http://secunia.com/advisories/15855 http://secunia.com/advisories/15861 http://secunia.com/advisories/15872 http://secunia.com/advisories/15883 http://secunia.com/advisories/15884 http://secunia.com/advisories/15895 http://secunia.com/advisories/15903 http://secunia.com/advisories/15904 http://secunia.com/advisories/15916 http://secunia.com/advisories/15917 http://secunia.com/advisories/15922 http://secunia.com/advisories/15944 http://secunia.com/advisories/15947 http://secunia.com/advisories/15957 http://secunia.com/advisories/16001 http://secunia.com/advisories/16339 http://secunia.com/advisories/16693 http://secunia.com/advisories/17440 http://secunia.com/advisories/17674 http://secunia.com/advisories/18003 SuSE Security Announcement: SUSE-SA:2005:041 (Google Search) http://www.novell.com/linux/security/advisories/2005_41_php_pear.html SuSE Security Announcement: SUSE-SA:2005:049 (Google Search) http://www.novell.com/linux/security/advisories/2005_49_php.html SuSE Security Announcement: SUSE-SA:2005:051 (Google Search) http://marc.info/?l=bugtraq&m=112605112027335&w=2 SuSE Security Announcement: SUSE-SR:2005:018 (Google Search) http://www.novell.com/linux/security/advisories/2005_18_sr.html http://www.vupen.com/english/advisories/2005/2827
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.