English | Deutsch | Español
 
Startseite ▼
Startseite Über uns Kontact Datenschutz Partnerprogramme Zeugnisse In der Presse Mailinglisten Missbrauch Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Sicherheits
Überprüfungs ▼
Home Dediziert Erweitert Standard Wiederkehrend Risikolos Desktop Basis Sicherheits Segal FAQ Preis/Funktionszusammenfassung Bestellen Neue Anfälligkeiten Alle Anfälligkeiten Vertraulichkeit Anfälligkeiten Suche Durchführen Terminkalender IP Permissions Maßgeschneidert Warteschlange Erinnerer Siegel Berichte Berichts Stil
Verwaltetes
DNS ▼
Info Bestellen/Erneuern FAQ AUP Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password
Netzwerk
Überwachung ▼
Enterprise Erweiterte Standard Gratis Test FAQ Preis/Funktionszusammenfassung Bestellen Beispiele
Konfigurieren/Status Alarm Profile
Recherce
Berichte ▼
Home FAQ Glossary Archive
 Anmeldung/Registrierung 
 
 Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.56335
Kategorie:Trustix Local Security Checks
Titel:Trustix Security Advisory TSLSA-2006-0010 (sudo, tar)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is missing updates announced in
advisory TSLSA-2006-0010.

sudo < TSL 3.0 > < TSL 2.2 > < TSEL 2 >
- New Upstream
- SECURITY Fix: Tavis Ormandy has reported a vulnerability in Sudo caused
due to an error within the environment cleaning. This can be exploited
by a user with sudo access to a python script to gain access to an
interactive python prompt via the PYTHONINSPECT environment variable.

The Common Vulnerabilities and Exposures project has assigned the
name CVE-2006-0151 to this issue.

tar < TSL 3.0 > < TSL 2.2 > < TSEL 2 >
- SECURITY Fix: Fixed Heap overlfow CVE-2006-0300.

Solution:
Update your system with the packages as indicated in
the referenced security advisory.

http://www.securityspace.com/smysecure/catid.html?in=TSLSA-2006-0010

Risk factor : High

CVSS Score:
7.2

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2006-0151
BugTraq ID: 16184
http://www.securityfocus.com/bid/16184
Debian Security Information: DSA-946 (Google Search)
http://www.debian.org/security/2006/dsa-946
http://www.mandriva.com/security/advisories?name=MDKSA-2006:159
http://secunia.com/advisories/18358
http://secunia.com/advisories/18363
http://secunia.com/advisories/18549
http://secunia.com/advisories/18558
http://secunia.com/advisories/18906
http://secunia.com/advisories/19016
http://secunia.com/advisories/21692
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.421822
SuSE Security Announcement: SUSE-SR:2006:002 (Google Search)
http://www.novell.com/linux/security/advisories/2006_02_sr.html
http://www.trustix.org/errata/2006/0010
https://usn.ubuntu.com/235-2/
Common Vulnerability Exposure (CVE) ID: CVE-2006-0300
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
BugTraq ID: 16764
http://www.securityfocus.com/bid/16764
Cert/CC Advisory: TA07-072A
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
Cert/CC Advisory: TA07-109A
http://www.us-cert.gov/cas/techalerts/TA07-109A.html
Debian Security Information: DSA-987 (Google Search)
http://www.debian.org/security/2006/dsa-987
http://www.securityfocus.com/archive/1/430299/100/0/threaded
http://www.gentoo.org/security/en/glsa/glsa-200603-06.xml
http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:046
http://lists.gnu.org/archive/html/bug-tar/2006-02/msg00051.html
http://www.openpkg.org/security/OpenPKG-SA-2006.006-tar.html
http://www.osvdb.org/23371
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5252
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5978
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5993
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6094
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9295
http://www.redhat.com/support/errata/RHSA-2006-0232.html
http://securitytracker.com/id?1015705
http://secunia.com/advisories/18973
http://secunia.com/advisories/18976
http://secunia.com/advisories/18999
http://secunia.com/advisories/19093
http://secunia.com/advisories/19130
http://secunia.com/advisories/19152
http://secunia.com/advisories/19236
http://secunia.com/advisories/20042
http://secunia.com/advisories/24479
http://secunia.com/advisories/24966
http://securityreason.com/securityalert/480
http://securityreason.com/securityalert/543
http://sunsolve.sun.com/search/document.do?assetkey=1-26-241646-1
SuSE Security Announcement: SUSE-SR:2006:005 (Google Search)
http://www.novell.com/linux/security/advisories/2006_05_sr.html
https://usn.ubuntu.com/257-1/
http://www.vupen.com/english/advisories/2006/0684
http://www.vupen.com/english/advisories/2007/0930
http://www.vupen.com/english/advisories/2007/1470
http://www.vupen.com/english/advisories/2008/2518
XForce ISS Database: gnu-tar-pax-headers-bo(24855)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24855
CopyrightCopyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.



© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.