Test Kennung:	1.3.6.1.4.1.25623.1.0.54273
Kategorie:	Trustix Local Security Checks
Titel:	Trustix Security Advisory TSLSA-2004-0005 (slocate)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory TSLSA-2004-0005. Mr. Patrik Hornik discovered a buffer overflow vulnerability in slocate version 2.6. The vulnerability corrupts heap management structures and possibly leads to gaining slocate group privileges, which allows reading the global slocate database and thus obtaining a list of all files in the system by an unauthorized user. For further description, see CVE-2003-0848 at http://cve.mitre.org/ Solution: Update your system with the packages as indicated in the referenced security advisory. http://www.securityspace.com/smysecure/catid.html?in=TSLSA-2004-0005 Risk factor : Medium CVSS Score: 4.6
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0848 Bugtraq: 20031006 SA-20031006 slocate vulnerability (Google Search) http://marc.info/?l=bugtraq&m=106546447321274&w=2 Bugtraq: 20031011 SA-20031006 slocate buffer overflow - exploitation proof (Google Search) http://marc.info/?l=bugtraq&m=106589631819348&w=2 Debian Security Information: DSA-428 (Google Search) http://www.debian.org/security/2004/dsa-428 http://www.redhat.com/archives/fedora-announce-list/2004-January/msg00009.html http://www.mandriva.com/security/advisories?name=MDKSA-2004:004 http://www.ebitech.sk/patrik/SA/SA-20031006-A.txt http://www.ebitech.sk/patrik/SA/SA-20031006.txt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11033 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A821 RedHat Security Advisories: RHSA-2004:040 http://rhn.redhat.com/errata/RHSA-2004-040.html http://www.redhat.com/support/errata/RHSA-2004-041.html SCO Security Bulletin: CSSA-2004-001.0 ftp://ftp.sco.com/pub/updates/OpenLinux/3.1.1/Workstation/CSSA-2004-001.0/CSSA-2004-001.0.txt http://secunia.com/advisories/10670 http://secunia.com/advisories/10683 http://secunia.com/advisories/10686 http://secunia.com/advisories/10698 http://secunia.com/advisories/10702 http://secunia.com/advisories/10720 http://secunia.com/advisories/10722 http://secunia.com/advisories/9962/ SGI Security Advisory: 20040201-01-U ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc SGI Security Advisory: 20040202-01-U ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc http://www.trustix.org/errata/misc/2004/TSL-2004-0005-slocate.asc.txt
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.