ID de Prueba:	1.3.6.1.4.1.25623.1.0.842208
Categoría:	Ubuntu Local Security Checks
Título:	Ubuntu Update for apport USN-2609-1
Resumen:	The remote host is missing an update for the 'apport'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'apport' package(s) announced via the referenced advisory. Vulnerability Insight: Sander Bos discovered that Apport incorrectly handled permissions when the system was configured to generate core dumps for setuid binaries. A local attacker could use this issue to gain elevated privileges. (CVE-2015-1324) Philip Pettersson discovered that Apport contained race conditions resulting core dumps to be generated with incorrect permissions in arbitrary locations. A local attacker could use this issue to gain elevated privileges. (CVE-2015-1325) Affected Software/OS: apport on Ubuntu 14.10, Ubuntu 14.04 LTS, Ubuntu 12.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1324 BugTraq ID: 74767 http://www.securityfocus.com/bid/74767 http://www.ubuntu.com/usn/USN-2609-1 Common Vulnerability Exposure (CVE) ID: CVE-2015-1325 BugTraq ID: 74769 http://www.securityfocus.com/bid/74769 https://www.exploit-db.com/exploits/37088/ http://www.openwall.com/lists/oss-security/2015/05/21/10
Copyright	Copyright (C) 2015 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.