Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.702925
Kategorie:Debian Local Security Checks
Titel:Debian Security Advisory DSA 2925-1 (rxvt-unicode - security update)
Zusammenfassung:Phillip Hallam-Baker discovered that window property values could be;queried in rxvt-unicode, resulting in the potential execution of;arbitrary commands.
Beschreibung:Summary:
Phillip Hallam-Baker discovered that window property values could be
queried in rxvt-unicode, resulting in the potential execution of
arbitrary commands.

Affected Software/OS:
rxvt-unicode on Debian Linux

Solution:
For the oldstable distribution (squeeze), this problem has been fixed in
version 9.07-2+deb6u1.

For the stable distribution (wheezy), this problem has been fixed in
version 9.15-2+deb7u1.

For the testing distribution (jessie), this problem has been fixed in
version 9.20-1.

For the unstable distribution (sid), this problem has been fixed in
version 9.20-1.

We recommend that you upgrade your rxvt-unicode packages.

CVSS Score:
7.6

CVSS Vector:
AV:N/AC:H/Au:N/C:C/I:C/A:C

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2014-3121
BugTraq ID: 67155
http://www.securityfocus.com/bid/67155
Debian Security Information: DSA-2925 (Google Search)
http://www.debian.org/security/2014/dsa-2925
https://lists.fedoraproject.org/pipermail/package-announce/2014-May/133166.html
https://lists.fedoraproject.org/pipermail/package-announce/2014-May/133195.html
http://seclists.org/oss-sec/2014/q2/204
SuSE Security Announcement: SUSE-SU-2014:0838 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2014-06/msg00026.html
SuSE Security Announcement: openSUSE-SU-2014:0814 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-06/msg00038.html
CopyrightCopyright (c) 2014 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.