Red Hat Local Security Checks : RedHat Security Advisory RHSA-2005:598

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.55011

Kategorie: Red Hat Local Security Checks

Titel: RedHat Security Advisory RHSA-2005:598

Zusammenfassung: NOSUMMARY

Beschreibung: Description:

The remote host is missing updates announced in
advisory RHSA-2005:598.

Sysreport is a utility that gathers information about a system's hardware
and configuration. The information can then be used for diagnostic purposes
and debugging.

Bill Stearns discovered a bug in the way sysreport creates temporary files.
It is possible that a local attacker could obtain sensitive information
about the system when sysreport is run. The Common Vulnerabilities and
Exposures project assigned the name CVE-2005-2104 to this issue.

Users of sysreport should update to this erratum package, which contains a
patch that resolves this issue.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2005-598.html

Risk factor : Medium

CVSS Score:
2.1

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2005-2104
BugTraq ID: 15379
http://www.securityfocus.com/bid/15379
http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00034.html
http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00035.html
http://www.osvdb.org/18682
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9411
http://www.redhat.com/support/errata/RHSA-2005-598.html
http://securitytracker.com/id?1014653
http://secunia.com/advisories/16381
http://secunia.com/advisories/17539
XForce ISS Database: sysreport-race-condition(21770)
https://exchange.xforce.ibmcloud.com/vulnerabilities/21770

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.55011
Kategorie:	Red Hat Local Security Checks
Titel:	RedHat Security Advisory RHSA-2005:598
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory RHSA-2005:598. Sysreport is a utility that gathers information about a system's hardware and configuration. The information can then be used for diagnostic purposes and debugging. Bill Stearns discovered a bug in the way sysreport creates temporary files. It is possible that a local attacker could obtain sensitive information about the system when sysreport is run. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-2104 to this issue. Users of sysreport should update to this erratum package, which contains a patch that resolves this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-598.html Risk factor : Medium CVSS Score: 2.1
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2104 BugTraq ID: 15379 http://www.securityfocus.com/bid/15379 http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00034.html http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00035.html http://www.osvdb.org/18682 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9411 http://www.redhat.com/support/errata/RHSA-2005-598.html http://securitytracker.com/id?1014653 http://secunia.com/advisories/16381 http://secunia.com/advisories/17539 XForce ISS Database: sysreport-race-condition(21770) https://exchange.xforce.ibmcloud.com/vulnerabilities/21770
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com