Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.54577
Kategorie:Gentoo Local Security Checks
Titel:Gentoo Security Advisory GLSA 200405-17 (metamail)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:
The remote host is missing updates announced in
advisory GLSA 200405-17.

Several format string bugs and buffer overflows were discovered in
metamail, potentially allowing execution of arbitrary code remotely.

Solution:
All users of Metamail should upgrade to the latest stable version:

# emerge sync

# emerge -pv '>=net-mail/metamail-2.7.45.3'
# emerge '>=net-mail/metamail-2.7.45.3'

http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200405-17
http://bugs.gentoo.org/show_bug.cgi?id=42133

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2004-0104
BugTraq ID: 9692
http://www.securityfocus.com/bid/9692
Bugtraq: 20040218 metamail format string bugs and buffer overflows (Google Search)
http://marc.info/?l=bugtraq&m=107713476911429&w=2
CERT/CC vulnerability note: VU#518518
http://www.kb.cert.org/vuls/id/518518
Computer Incident Advisory Center Bulletin: O-083
http://www.ciac.org/ciac/bulletins/o-083.shtml
Debian Security Information: DSA-449 (Google Search)
http://www.debian.org/security/2004/dsa-449
http://www.mandriva.com/security/advisories?name=MDKSA-2004:014
http://www.redhat.com/support/errata/RHSA-2004-073.html
http://secunia.com/advisories/10908
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.404734
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0041.html
XForce ISS Database: metamail-contenttype-format-string(15245)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15245
XForce ISS Database: metamail-printheader-format-string(15259)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15259
Common Vulnerability Exposure (CVE) ID: CVE-2004-0105
CERT/CC vulnerability note: VU#513062
http://www.kb.cert.org/vuls/id/513062
XForce ISS Database: metamail-printheader-nonascii-bo(15247)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15247
XForce ISS Database: metamail-splitmail-subject-bo(15258)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15258
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.