Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200507-10 (ruby)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.54986

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200507-10 (ruby)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory GLSA 200507-10.

A vulnerability in XMLRPC.iPIMethods allows remote attackers to execute
arbitrary commands.

Solution:
All Ruby users should upgrade to the latest available version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=dev-lang/ruby-1.8.2-r2'

http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200507-10
http://bugs.gentoo.org/show_bug.cgi?id=96784
http://www.ruby-lang.org/en/20050701.html

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-1992
http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html
AUSCERT Advisory: ESB-2005.0732
http://www.auscert.org.au/5509
BugTraq ID: 14016
http://www.securityfocus.com/bid/14016
CERT/CC vulnerability note: VU#684913
http://www.kb.cert.org/vuls/id/684913
Computer Incident Advisory Center Bulletin: P-312
http://www.ciac.org/ciac/bulletins/p-312.shtml
Debian Security Information: DSA-748 (Google Search)
http://www.debian.org/security/2005/dsa-748
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10819
http://www.redhat.com/support/errata/RHSA-2005-543.html
http://secunia.com/advisories/16920/
SuSE Security Announcement: SUSE-SR:2005:018 (Google Search)
http://www.novell.com/linux/security/advisories/2005_18_sr.html

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.54986
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200507-10 (ruby)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory GLSA 200507-10. A vulnerability in XMLRPC.iPIMethods allows remote attackers to execute arbitrary commands. Solution: All Ruby users should upgrade to the latest available version: # emerge --sync # emerge --ask --oneshot --verbose '>=dev-lang/ruby-1.8.2-r2' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200507-10 http://bugs.gentoo.org/show_bug.cgi?id=96784 http://www.ruby-lang.org/en/20050701.html CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1992 http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html AUSCERT Advisory: ESB-2005.0732 http://www.auscert.org.au/5509 BugTraq ID: 14016 http://www.securityfocus.com/bid/14016 CERT/CC vulnerability note: VU#684913 http://www.kb.cert.org/vuls/id/684913 Computer Incident Advisory Center Bulletin: P-312 http://www.ciac.org/ciac/bulletins/p-312.shtml Debian Security Information: DSA-748 (Google Search) http://www.debian.org/security/2005/dsa-748 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10819 http://www.redhat.com/support/errata/RHSA-2005-543.html http://secunia.com/advisories/16920/ SuSE Security Announcement: SUSE-SR:2005:018 (Google Search) http://www.novell.com/linux/security/advisories/2005_18_sr.html
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com