Test Kennung:	1.3.6.1.4.1.25623.1.0.841872
Kategorie:	Ubuntu Local Security Checks
Titel:	Ubuntu Update for swift USN-2256-1
Zusammenfassung:	The remote host is missing an update for the 'swift'; package(s) announced via the referenced advisory.
Beschreibung:	Summary: The remote host is missing an update for the 'swift' package(s) announced via the referenced advisory. Vulnerability Insight: John Dickinson discovered that Swift did not properly quote the WWW-Authenticate header value. If a user were tricked into navigating to a malicious Swift URL, an attacker could conduct cross-site scripting attacks. With cross-site scripting vulnerabilities, if a user were tricked into viewing server output during a crafted server request, a remote attacker could exploit this to modify the contents, or steal confidential data, within the same domain. Affected Software/OS: swift on Ubuntu 14.04 LTS Solution: Please Install the Updated Packages. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2014-3497 BugTraq ID: 68116 http://www.securityfocus.com/bid/68116 http://lists.openstack.org/pipermail/openstack-announce/2014-June/000243.html http://www.openwall.com/lists/oss-security/2014/06/19/10 http://secunia.com/advisories/59532 http://www.ubuntu.com/usn/USN-2256-1
Copyright	Copyright (C) 2014 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.