Test Kennung:	1.3.6.1.4.1.25623.1.0.55160
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu USN-174-1 (courier)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing an update to courier announced via advisory USN-174-1. A security issue affects the following Ubuntu releases: Ubuntu 5.04 (Hoary Hedgehog) The following packages are affected: courier-base A Denial of Service vulnerability has been discovered in the Courier mail server. Due to a flawed status code check, failed DNS (domain name service) queries for SPF (sender policy framework) were not handled properly and could lead to memory corruption. A malicious DNS server could exploit this to crash the Courier server. However, SPF is not enabled by default, so you are only vulnerable if you explicitly enabled it. The Ubuntu 4.10 version of courier is not affected by this. Solution: The problem can be corrected by upgrading the affected package to version 0.47-3ubuntu1.1. In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-174-1 Risk factor : Medium CVSS Score: 5.0
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2151 http://www.courier-mta.org/?changelog.html http://secunia.com/advisories/15901
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.