Gentoo Local Security Checks : Gentoo Security Advisory GLSA 200712-02 (cacti)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.59964

Categoría: Gentoo Local Security Checks

Título: Gentoo Security Advisory GLSA 200712-02 (cacti)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing updates announced in
advisory GLSA 200712-02.

An SQL injection vulnerability has been discovered in Cacti.

Solution:
All Cacti users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-analyzer/cacti-0.8.6j-r7'

http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200712-02
http://bugs.gentoo.org/show_bug.cgi?id=199509

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2007-6035
BugTraq ID: 26487
http://www.securityfocus.com/bid/26487
Debian Security Information: DSA-1418 (Google Search)
http://www.debian.org/security/2007/dsa-1418
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00794.html
http://security.gentoo.org/glsa/glsa-200712-02.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2007:231
http://bugs.gentoo.org/show_bug.cgi?id=199509
http://www.securitytracker.com/id?1018982
http://secunia.com/advisories/27719
http://secunia.com/advisories/27745
http://secunia.com/advisories/27756
http://secunia.com/advisories/27891
http://secunia.com/advisories/27950
SuSE Security Announcement: SUSE-SR:2007:024 (Google Search)
http://www.novell.com/linux/security/advisories/2007_24_sr.html
http://www.vupen.com/english/advisories/2007/3911
XForce ISS Database: cacti-graph-sql-injection(38559)
https://exchange.xforce.ibmcloud.com/vulnerabilities/38559

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.59964
Categoría:	Gentoo Local Security Checks
Título:	Gentoo Security Advisory GLSA 200712-02 (cacti)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing updates announced in advisory GLSA 200712-02. An SQL injection vulnerability has been discovered in Cacti. Solution: All Cacti users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose '>=net-analyzer/cacti-0.8.6j-r7' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200712-02 http://bugs.gentoo.org/show_bug.cgi?id=199509 CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-6035 BugTraq ID: 26487 http://www.securityfocus.com/bid/26487 Debian Security Information: DSA-1418 (Google Search) http://www.debian.org/security/2007/dsa-1418 https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00794.html http://security.gentoo.org/glsa/glsa-200712-02.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:231 http://bugs.gentoo.org/show_bug.cgi?id=199509 http://www.securitytracker.com/id?1018982 http://secunia.com/advisories/27719 http://secunia.com/advisories/27745 http://secunia.com/advisories/27756 http://secunia.com/advisories/27891 http://secunia.com/advisories/27950 SuSE Security Announcement: SUSE-SR:2007:024 (Google Search) http://www.novell.com/linux/security/advisories/2007_24_sr.html http://www.vupen.com/english/advisories/2007/3911 XForce ISS Database: cacti-graph-sql-injection(38559) https://exchange.xforce.ibmcloud.com/vulnerabilities/38559
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com