Anfälligkeitssuche        Suche in 187964 CVE Beschreibungen
und 85075 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:
Kategorie:Slackware Local Security Checks
Titel:Slackware Advisory SSA:2005-242-02 PHP
Zusammenfassung:The remote host is missing an update as announced;via advisory SSA:2005-242-02.
The remote host is missing an update as announced
via advisory SSA:2005-242-02.

Vulnerability Insight:
New PHP packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1,
and -current to fix security issues. PHP has been relinked with the
shared PCRE library to fix an overflow issue with PHP's builtin PRCE
code, and PEAR::XMLRPC has been upgraded to version 1.4.0 which
eliminates the eval() function. The eval() function is believed to be
insecure as implemented, and would be difficult to secure.

Note that these new packages now require that the PCRE package be
installed, so be sure to get the new package from the patches/packages/
directory if you don't already have it. A new version of this (6.3)
was also issued today, so be sure that is the one you install.

Upgrade to the new package(s).

CVSS Score:

CVSS Vector:

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2005-2491
BugTraq ID: 14620
BugTraq ID: 15647
Debian Security Information: DSA-800 (Google Search)
Debian Security Information: DSA-817 (Google Search)
Debian Security Information: DSA-819 (Google Search)
Debian Security Information: DSA-821 (Google Search)
HPdes Security Advisory: HPSBMA02159
HPdes Security Advisory: HPSBOV02683
HPdes Security Advisory: HPSBUX02074
HPdes Security Advisory: SSRT051251
HPdes Security Advisory: SSRT061238
HPdes Security Advisory: SSRT090208
SCO Security Bulletin: SCOSA-2006.10
SGI Security Advisory: 20060401-01-U
SuSE Security Announcement: SUSE-SA:2005:048 (Google Search)
SuSE Security Announcement: SUSE-SA:2005:049 (Google Search)
SuSE Security Announcement: SUSE-SA:2005:051 (Google Search)
SuSE Security Announcement: SUSE-SA:2005:052 (Google Search)
Common Vulnerability Exposure (CVE) ID: CVE-2005-2498
BugTraq ID: 14560
Bugtraq: 20050815 Advisory 15/2005: PHPXMLRPC Remote PHP Code Injection Vulnerability (Google Search)
Bugtraq: 20050815 [DRUPAL-SA-2005-004] Drupal 4.6.3 / 4.5.5 fixes critical XML-RPC issue (Google Search)
Bugtraq: 20050817 [PHPADSNEW-SA-2005-001] phpAdsNew and phpPgAds 2.0.6 fix multiple vulnerabilities (Google Search)
Debian Security Information: DSA-789 (Google Search)
Debian Security Information: DSA-798 (Google Search)
Debian Security Information: DSA-840 (Google Search)
Debian Security Information: DSA-842 (Google Search)
CopyrightCopyright (c) 2012 E-Soft Inc.

Dies ist nur einer von 85075 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.