Test Kennung:	1.3.6.1.4.1.25623.1.0.703134
Kategorie:	Debian Local Security Checks
Titel:	Debian Security Advisory DSA 3134-1 (sympa - security update)
Zusammenfassung:	A vulnerability has been discovered;in the web interface of sympa, a mailing list manager. An attacker could take;advantage of this flaw in the newsletter posting area, which allows sending to;a list, or to oneself, any file located on the server filesystem and readable by;the sympa user.
Beschreibung:	Summary: A vulnerability has been discovered in the web interface of sympa, a mailing list manager. An attacker could take advantage of this flaw in the newsletter posting area, which allows sending to a list, or to oneself, any file located on the server filesystem and readable by the sympa user. Affected Software/OS: sympa on Debian Linux Solution: For the stable distribution (wheezy), this problem has been fixed in version 6.1.11~ dfsg-5+deb7u2. For the upcoming stable distribution (jessie), this problem will be fixed soon. For the unstable distribution (sid), this problem has been fixed in version 6.1.23~ dfsg-2. We recommend that you upgrade your sympa packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2015-1306 BugTraq ID: 72277 http://www.securityfocus.com/bid/72277 Debian Security Information: DSA-3134 (Google Search) http://www.debian.org/security/2015/dsa-3134 http://www.mandriva.com/security/advisories?name=MDVSA-2015:051 http://www.openwall.com/lists/oss-security/2015/01/20/4 http://secunia.com/advisories/62387 http://secunia.com/advisories/62442
Copyright	Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.