Test Kennung:	1.3.6.1.4.1.25623.1.0.55232
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Security Advisory (FreeBSD-SA-05:20.cvsbug.asc)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:20.cvsbug.asc cvsbug(1) is a utility for reporting problems in the CVS revision control system. It is based on the GNATS send-pr(1) utility. A temporary file is created, used, deleted, and then re-created with the same name. This creates a window during which an attacker could replace the file with a link to another file. While cvsbug(1) is based on the send-pr(1) utility, this problem does not exist in the version of send-pr(1) distributed with FreeBSD. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date http://www.securityspace.com/smysecure/catid.html?in=FreeBSD-SA-05:20.cvsbug.asc CVSS Score: 4.6 CVSS Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2693 Debian Security Information: DSA-802 (Google Search) http://www.debian.org/security/2005/dsa-802 Debian Security Information: DSA-806 (Google Search) http://www.debian.org/security/2005/dsa-806 FreeBSD Security Advisory: FreeBSD-SA-05:20 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:20.cvsbug.asc https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10835 http://www.redhat.com/support/errata/RHSA-2005-756.html http://securitytracker.com/id?1014857 http://secunia.com/advisories/16765 http://www.vupen.com/english/advisories/2005/1667
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.