Test Kennung:	1.3.6.1.4.1.25623.1.0.58130
Kategorie:	Gentoo Local Security Checks
Titel:	Gentoo Security Advisory GLSA 200703-13 (net-misc/ssh)
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory GLSA 200703-13. The SSH Secure Shell Server SFTP function is vulnerable to privilege escalation. Solution: This package is currently masked, there is no upgrade path for the 3.2.x version, and a license must be purchased in order to update to a non-vulnerable version. Because of this, we recommend unmerging this package: # emerge --ask --verbose --unmerge net-misc/ssh http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200703-13 http://bugs.gentoo.org/show_bug.cgi?id=168584 CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0705 BugTraq ID: 16625 http://www.securityfocus.com/bid/16625 BugTraq ID: 16640 http://www.securityfocus.com/bid/16640 CERT/CC vulnerability note: VU#419241 http://www.kb.cert.org/vuls/id/419241 http://security.gentoo.org/glsa/glsa-200703-13.xml HPdes Security Advisory: HPSBTU02322 http://marc.info/?l=bugtraq&m=120654385125315&w=2 HPdes Security Advisory: SSRT080011 http://securitytracker.com/id?1015619 http://secunia.com/advisories/18828 http://secunia.com/advisories/18843 http://secunia.com/advisories/24516 http://secunia.com/advisories/29552 http://www.vupen.com/english/advisories/2006/0554 http://www.vupen.com/english/advisories/2006/0555 http://www.vupen.com/english/advisories/2008/1008/references XForce ISS Database: sftp-logging-format-string(24651) https://exchange.xforce.ibmcloud.com/vulnerabilities/24651
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.