ID de Prueba:	1.3.6.1.4.1.25623.1.0.52959
Categoría:	Turbolinux Local Security Tests
Título:	Turbolinux TLSA-2003-52 (sendmail)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to sendmail announced via advisory TLSA-2003-52. Sendmail is a Mail Transport Agent, which is the program that moves mail from one machine to another. The potential buffer overflows are in ruleset parsing and address parsing for sendmail. This vulnerability may allow a remote attacker to execute arbitrary code. Solution: Please use the turbopkg (zabom) tool to apply the update. http://www.securityspace.com/smysecure/catid.html?in=TLSA-2003-52 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0681 BugTraq ID: 8649 http://www.securityfocus.com/bid/8649 Bugtraq: 20030917 GLSA: sendmail (200309-13) (Google Search) http://marc.info/?l=bugtraq&m=106383437615742&w=2 Bugtraq: 20030919 [OpenPKG-SA-2003.041] OpenPKG Security Advisory (sendmail) (Google Search) http://marc.info/?l=bugtraq&m=106398718909274&w=2 CERT/CC vulnerability note: VU#108964 http://www.kb.cert.org/vuls/id/108964 Conectiva Linux advisory: CLA-2003:742 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000742 Debian Security Information: DSA-384 (Google Search) http://www.debian.org/security/2003/dsa-384 Immunix Linux Advisory: IMNX-2003-7+-021-01 http://www.mandriva.com/security/advisories?name=MDKSA-2003:092 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3606 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A595 http://www.redhat.com/support/errata/RHSA-2003-283.html XForce ISS Database: sendmail-ruleset-parsing-bo(13216) https://exchange.xforce.ibmcloud.com/vulnerabilities/13216 Common Vulnerability Exposure (CVE) ID: CVE-2003-0694 Bugtraq: 20030917 Sendmail 8.12.9 prescan bug (a new one) [CAN-2003-0694] (Google Search) http://marc.info/?l=bugtraq&m=106381604923204&w=2 Bugtraq: 20030917 [slackware-security] Sendmail vulnerabilities fixed (SSA:2003-260-02) (Google Search) http://marc.info/?l=bugtraq&m=106382859407683&w=2 http://www.cert.org/advisories/CA-2003-25.html CERT/CC vulnerability note: VU#784980 http://www.kb.cert.org/vuls/id/784980 FreeBSD Security Advisory: FreeBSD-SA-03:13 http://archives.neohapsis.com/archives/fulldisclosure/2003-q3/4119.html HPdes Security Advisory: SSRT3631 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2975 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A572 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A603 http://www.redhat.com/support/errata/RHSA-2003-284.html SCO Security Bulletin: CSSA-2003-036.0 SCO Security Bulletin: SCOSA-2004.11 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2004.11/SCOSA-2004.11.txt http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0113.html
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.