ID de Prueba:	1.3.6.1.4.1.25623.1.0.122219
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2011-0347)
Resumen:	The remote host is missing an update for the 'openldap' package(s) announced via the ELSA-2011-0347 advisory.
Descripción:	Summary: The remote host is missing an update for the 'openldap' package(s) announced via the ELSA-2011-0347 advisory. Vulnerability Insight: [2.4.19-15.2] - fix: security - DoS when submitting special MODRDN request (#680975) [2.4.19-15.1] - fix: CVE-2011-1024 ppolicy forwarded bind failure messages cause success - fix: CVE-2011-1025 rootpw is not verified for ndb backend Affected Software/OS: 'openldap' package(s) on Oracle Linux 6. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-1024 1025188 http://securitytracker.com/id?1025188 43331 http://secunia.com/advisories/43331 43708 http://secunia.com/advisories/43708 43718 http://secunia.com/advisories/43718 ADV-2011-0665 http://www.vupen.com/english/advisories/2011/0665 GLSA-201406-36 http://security.gentoo.org/glsa/glsa-201406-36.xml MDVSA-2011:055 http://www.mandriva.com/security/advisories?name=MDVSA-2011:055 MDVSA-2011:056 http://www.mandriva.com/security/advisories?name=MDVSA-2011:056 RHSA-2011:0346 http://www.redhat.com/support/errata/RHSA-2011-0346.html RHSA-2011:0347 http://www.redhat.com/support/errata/RHSA-2011-0347.html USN-1100-1 http://www.ubuntu.com/usn/USN-1100-1 [openldap-announce] 20110212 OpenLDAP 2.4.24 available http://www.openldap.org/lists/openldap-announce/201102/msg00000.html [openldap-technical] 20100429 ppolicy master/slave issue http://www.openldap.org/lists/openldap-technical/201004/msg00247.html [oss-security] 20110224 CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/02/24/12 [oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/02/25/13 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-ldap/chain.c.diff?r1=1.76&r2=1.77&hideattic=1&sortbydate=0 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6607 https://bugzilla.novell.com/show_bug.cgi?id=674985 https://bugzilla.redhat.com/show_bug.cgi?id=680466 Common Vulnerability Exposure (CVE) ID: CVE-2011-1025 1025190 http://securitytracker.com/id?1025190 [oss-security] 20110225 Re: CVE Request -- OpenLDAP -- two issue http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/back-ndb/bind.cpp.diff?r1=1.5&r2=1.8 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6661 https://bugzilla.redhat.com/show_bug.cgi?id=680472 Common Vulnerability Exposure (CVE) ID: CVE-2011-1081 1025191 http://securitytracker.com/id?1025191 [oss-security] 20110228 Re: CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/02/28/1 http://openwall.com/lists/oss-security/2011/02/28/2 [oss-security] 20110301 Re: CVE Request -- OpenLDAP -- two issues http://openwall.com/lists/oss-security/2011/03/01/11 http://openwall.com/lists/oss-security/2011/03/01/15 http://www.openldap.org/devel/cvsweb.cgi/servers/slapd/modrdn.c.diff?r1=1.170.2.8&r2=1.170.2.9 http://www.openldap.org/its/index.cgi/Software%20Bugs?id=6768 https://bugzilla.redhat.com/show_bug.cgi?id=680975 openldap-modrdnc-dos(66239) https://exchange.xforce.ibmcloud.com/vulnerabilities/66239
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.