Turbolinux Local Security Tests : Turbolinux TLSA-2006-12 (xorg-x11, XFree86)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.57221

Categoría: Turbolinux Local Security Tests

Título: Turbolinux TLSA-2006-12 (xorg-x11, XFree86)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to xorg-x11, XFree86
announced via advisory TLSA-2006-12.

XFree86 is an implementation of the X Window System, providing a core
graphical user interface and video drivers.

The xorg-x11 and XFree86 have the setuid return value check problems.

This vulnerability may allow local users to execute arbitrary code or
overwrite arbitrary files via logfile.

Solution: Please use the turbopkg (zabom) tool to apply the update.
http://www.securityspace.com/smysecure/catid.html?in=TLSA-2006-12

Risk factor : High

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CAN-2006-0745
BugTraq ID: 17169
http://www.securityfocus.com/bid/17169
Bugtraq: 20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0 (Google Search)
http://www.securityfocus.com/archive/1/428230/100/0/threaded
Bugtraq: 20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0 (Google Search)
http://www.securityfocus.com/archive/1/428183/100/0/threaded
http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html
http://www.mandriva.com/security/advisories?name=MDKSA-2006:056
http://www.osvdb.org/24000
http://www.osvdb.org/24001
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697
http://securitytracker.com/id?1015793
http://secunia.com/advisories/19256
http://secunia.com/advisories/19307
http://secunia.com/advisories/19311
http://secunia.com/advisories/19316
http://secunia.com/advisories/19676
http://securityreason.com/securityalert/606
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1
SuSE Security Announcement: SUSE-SA:2006:016 (Google Search)
http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html
http://www.vupen.com/english/advisories/2006/1017
http://www.vupen.com/english/advisories/2006/1028
XForce ISS Database: xorg-geteuid-privilege-escalation(25341)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25341

Copyright Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.57221
Categoría:	Turbolinux Local Security Tests
Título:	Turbolinux TLSA-2006-12 (xorg-x11, XFree86)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to xorg-x11, XFree86 announced via advisory TLSA-2006-12. XFree86 is an implementation of the X Window System, providing a core graphical user interface and video drivers. The xorg-x11 and XFree86 have the setuid return value check problems. This vulnerability may allow local users to execute arbitrary code or overwrite arbitrary files via logfile. Solution: Please use the turbopkg (zabom) tool to apply the update. http://www.securityspace.com/smysecure/catid.html?in=TLSA-2006-12 Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CAN-2006-0745 BugTraq ID: 17169 http://www.securityfocus.com/bid/17169 Bugtraq: 20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0 (Google Search) http://www.securityfocus.com/archive/1/428230/100/0/threaded Bugtraq: 20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0 (Google Search) http://www.securityfocus.com/archive/1/428183/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html http://www.mandriva.com/security/advisories?name=MDKSA-2006:056 http://www.osvdb.org/24000 http://www.osvdb.org/24001 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697 http://securitytracker.com/id?1015793 http://secunia.com/advisories/19256 http://secunia.com/advisories/19307 http://secunia.com/advisories/19311 http://secunia.com/advisories/19316 http://secunia.com/advisories/19676 http://securityreason.com/securityalert/606 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1 SuSE Security Announcement: SUSE-SA:2006:016 (Google Search) http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html http://www.vupen.com/english/advisories/2006/1017 http://www.vupen.com/english/advisories/2006/1028 XForce ISS Database: xorg-geteuid-privilege-escalation(25341) https://exchange.xforce.ibmcloud.com/vulnerabilities/25341
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com