 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.880662 |
| Kategorie: | CentOS Local Security Checks |
| Titel: | CentOS Update for scsi-target-utils CESA-2010:0362 centos5 i386 |
| Zusammenfassung: | The remote host is missing an update for the 'scsi-target-utils'; package(s) announced via the referenced advisory. |
| Beschreibung: | Summary: The remote host is missing an update for the 'scsi-target-utils' package(s) announced via the referenced advisory. Vulnerability Insight: The scsi-target-utils package contains the daemon and tools to set up and monitor SCSI targets. Currently, iSCSI software and iSER targets are supported. A format string flaw was found in scsi-target-utils' tgtd daemon. A remote attacker could trigger this flaw by sending a carefully-crafted Internet Storage Name Service (iSNS) request, causing the tgtd daemon to crash. (CVE-2010-0743) All scsi-target-utils users should upgrade to this updated package, which contains a backported patch to correct this issue. All running scsi-target-utils services must be restarted for the update to take effect. Affected Software/OS: scsi-target-utils on CentOS 5 Solution: Please install the updated packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Querverweis: |
Common Vulnerability Exposure (CVE) ID: CVE-2010-0743 39127 http://www.securityfocus.com/bid/39127 39142 http://secunia.com/advisories/39142 39726 http://secunia.com/advisories/39726 ADV-2010-1786 http://www.vupen.com/english/advisories/2010/1786 DSA-2042 http://www.debian.org/security/2010/dsa-2042 MDVSA-2010:131 http://www.mandriva.com/security/advisories?name=MDVSA-2010:131 SUSE-SR:2010:017 http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html [oss-security] 20100331 iscsitarget/scsi-target-tuils format string CVE assignment http://marc.info/?l=oss-security&m=127005132403189&w=2 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=574935 http://git.kernel.org/?p=linux/kernel/git/tomo/tgt.git%3Ba=commit%3Bh=107d922706cd36f3bb79bcca9bc4678c32f22e59 https://bugzilla.redhat.com/show_bug.cgi?id=576359 lstf-isns-format-string(57496) https://exchange.xforce.ibmcloud.com/vulnerabilities/57496 oval:org.mitre.oval:def:11248 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11248 |
| Copyright | Copyright (C) 2011 Greenbone AG |
| Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |