Test Kennung:	1.3.6.1.4.1.25623.1.0.54066
Kategorie:	SuSE Local Security Checks
Titel:	SuSE Security Advisory SUSE-SA:2004:018 (subversion)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory SUSE-SA:2004:018. Subversion is a version control system like the well known CVS. The subversion code is vulnerable to a remotely exploitable buffer overflow on the heap. The bug appears before any authentication took place. An attacker is able to execute arbitray code by abusing this vulnerability. Solution: Update your system with the packages as indicated in the referenced security advisory. http://www.securityspace.com/smysecure/catid.html?in=SUSE-SA:2004:018 Risk factor : Critical CVSS Score: 10.0
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0413 BugTraq ID: 10519 http://www.securityfocus.com/bid/10519 Bugtraq: 20041012 [FMADV] Subversion <= 1.04 Heap Overflow (Google Search) http://www.securityfocus.com/archive/1/365836 http://www.securityfocus.com/advisories/6847 https://bugzilla.fedora.us/show_bug.cgi?id=1748 http://www.gentoo.org/security/en/glsa/glsa-200406-07.xml SuSE Security Announcement: SuSE-SA:2004:018 (Google Search) http://www.novell.com/linux/security/advisories/2004_18_subversion.html XForce ISS Database: subversion-svn-bo(16396) https://exchange.xforce.ibmcloud.com/vulnerabilities/16396 Common Vulnerability Exposure (CVE) ID: CVE-2004-0179 BugTraq ID: 10136 http://www.securityfocus.com/bid/10136 Bugtraq: 20040416 [OpenPKG-SA-2004.016] OpenPKG Security Advisory (neon) (Google Search) http://marc.info/?l=bugtraq&m=108213873203477&w=2 Bugtraq: 20040416 void.at - neon format string bugs (Google Search) http://marc.info/?l=bugtraq&m=108214147022626&w=2 Debian Security Information: DSA-487 (Google Search) http://www.debian.org/security/2004/dsa-487 https://bugzilla.fedora.us/show_bug.cgi?id=1552 http://security.gentoo.org/glsa/glsa-200405-01.xml http://security.gentoo.org/glsa/glsa-200405-04.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:032 http://www.osvdb.org/5365 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1065 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10913 http://www.redhat.com/support/errata/RHSA-2004-157.html http://www.redhat.com/support/errata/RHSA-2004-158.html http://www.redhat.com/support/errata/RHSA-2004-159.html http://www.redhat.com/support/errata/RHSA-2004-160.html http://secunia.com/advisories/11363 SGI Security Advisory: 20040404-01-U ftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.asc SuSE Security Announcement: SuSE-SA:2004:008 (Google Search) http://lists.suse.com/archive/suse-security-announce/2004-Apr/0003.html SuSE Security Announcement: SuSE-SA:2004:009 (Google Search) http://lists.suse.com/archive/suse-security-announce/2004-Apr/0002.html Common Vulnerability Exposure (CVE) ID: CVE-2004-0398 BugTraq ID: 10385 http://www.securityfocus.com/bid/10385 Bugtraq: 20040519 Advisory 06/2004: libneon date parsing vulnerability (Google Search) http://marc.info/?l=bugtraq&m=108498433632333&w=2 Bugtraq: 20040519 [OpenPKG-SA-2004.024] OpenPKG Security Advisory (neon) (Google Search) http://marc.info/?l=bugtraq&m=108500057108022&w=2 Computer Incident Advisory Center Bulletin: O-148 http://www.ciac.org/ciac/bulletins/o-148.shtml Conectiva Linux advisory: CLA-2004:841 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000841 Debian Security Information: DSA-506 (Google Search) http://www.debian.org/security/2004/dsa-506 Debian Security Information: DSA-507 (Google Search) http://www.debian.org/security/2004/dsa-507 http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0982.html http://security.gentoo.org/glsa/glsa-200405-13.xml http://security.gentoo.org/glsa/glsa-200405-15.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:049 http://www.osvdb.org/6302 http://www.redhat.com/support/errata/RHSA-2004-191.html http://secunia.com/advisories/11638 http://secunia.com/advisories/11650 http://secunia.com/advisories/11673 XForce ISS Database: neon-library-nerfc1036parse-bo(16192) https://exchange.xforce.ibmcloud.com/vulnerabilities/16192
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.