ID de Prueba:	1.3.6.1.4.1.25623.1.0.120416
Categoría:	Amazon Linux Local Security Checks
Título:	Amazon Linux: Security Advisory (ALAS-2012-51)
Resumen:	The remote host is missing an update for the 'cvs' package(s) announced via the ALAS-2012-51 advisory.
Descripción:	Summary: The remote host is missing an update for the 'cvs' package(s) announced via the ALAS-2012-51 advisory. Vulnerability Insight: A heap-based buffer overflow flaw was found in the way the CVS client handled responses from HTTP proxies. A malicious HTTP proxy could use this flaw to cause the CVS client to crash or, possibly, execute arbitrary code with the privileges of the user running the CVS client. (CVE-2012-0804) Affected Software/OS: 'cvs' package(s) on Amazon Linux. Solution: Please install the updated package(s). CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0804 1026719 http://www.securitytracker.com/id?1026719 47869 http://secunia.com/advisories/47869 48063 http://secunia.com/advisories/48063 48142 http://secunia.com/advisories/48142 48150 http://secunia.com/advisories/48150 51943 http://www.securityfocus.com/bid/51943 78987 http://www.osvdb.org/78987 DSA-2407 http://www.debian.org/security/2012/dsa-2407 GLSA-201701-44 https://security.gentoo.org/glsa/201701-44 MDVSA-2012:044 http://www.mandriva.com/security/advisories?name=MDVSA-2012:044 RHSA-2012:0321 http://rhn.redhat.com/errata/RHSA-2012-0321.html USN-1371-1 http://ubuntu.com/usn/usn-1371-1 cvs-proxyconnect-bo(73097) https://exchange.xforce.ibmcloud.com/vulnerabilities/73097 https://bugzilla.redhat.com/show_bug.cgi?id=784141 openSUSE-SU-2012:0310 http://lists.opensuse.org/opensuse-updates/2012-02/msg00064.html
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.