Oracle Linux Local Security Checks : Oracle: Security Advisory (ELSA-2009-0057)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.122526

Categoría: Oracle Linux Local Security Checks

Título: Oracle: Security Advisory (ELSA-2009-0057)

Resumen: The remote host is missing an update for the 'squirrelmail' package(s) announced via the ELSA-2009-0057 advisory.

Descripción: Summary:
The remote host is missing an update for the 'squirrelmail' package(s) announced via the ELSA-2009-0057 advisory.

Vulnerability Insight:
[1.4.8-5.0.1.el5_2.3]
- Remove Redhat splash screen images

[1.4.8-5.3]
- Update patch for CVE-2008-3663 to fix a session handling regression (#480224)

Affected Software/OS:
'squirrelmail' package(s) on Oracle Linux 3, Oracle Linux 4, Oracle Linux 5.

Solution:
Please install the updated package(s).

CVSS Score:
6.5

CVSS Vector:
AV:N/AC:L/Au:S/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2009-0030
1021611
http://securitytracker.com/id?1021611
33354
http://www.securityfocus.com/bid/33354
33611
http://secunia.com/advisories/33611
RHSA-2009:0057
https://rhn.redhat.com/errata/RHSA-2009-0057.html
SUSE-SR:2009:004
http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html
https://bugzilla.redhat.com/show_bug.cgi?id=480224
https://bugzilla.redhat.com/show_bug.cgi?id=480488
oval:org.mitre.oval:def:10366
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10366
squirrelmail-sessionid-session-hijacking(48115)
https://exchange.xforce.ibmcloud.com/vulnerabilities/48115
Common Vulnerability Exposure (CVE) ID: CVE-2009-1580
http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html
BugTraq ID: 34916
http://www.securityfocus.com/bid/34916
Debian Security Information: DSA-1802 (Google Search)
http://www.debian.org/security/2009/dsa-1802
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00566.html
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00572.html
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00577.html
http://www.mandriva.com/security/advisories?name=MDVSA-2009:110
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10107
http://secunia.com/advisories/35052
http://secunia.com/advisories/35073
http://secunia.com/advisories/35140
http://secunia.com/advisories/40220
http://www.vupen.com/english/advisories/2009/1296
http://www.vupen.com/english/advisories/2010/1481
XForce ISS Database: squirrelmail-baseuri-session-hijacking(50462)
https://exchange.xforce.ibmcloud.com/vulnerabilities/50462

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.122526
Categoría:	Oracle Linux Local Security Checks
Título:	Oracle: Security Advisory (ELSA-2009-0057)
Resumen:	The remote host is missing an update for the 'squirrelmail' package(s) announced via the ELSA-2009-0057 advisory.
Descripción:	Summary: The remote host is missing an update for the 'squirrelmail' package(s) announced via the ELSA-2009-0057 advisory. Vulnerability Insight: [1.4.8-5.0.1.el5_2.3] - Remove Redhat splash screen images [1.4.8-5.3] - Update patch for CVE-2008-3663 to fix a session handling regression (#480224) Affected Software/OS: 'squirrelmail' package(s) on Oracle Linux 3, Oracle Linux 4, Oracle Linux 5. Solution: Please install the updated package(s). CVSS Score: 6.5 CVSS Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0030 1021611 http://securitytracker.com/id?1021611 33354 http://www.securityfocus.com/bid/33354 33611 http://secunia.com/advisories/33611 RHSA-2009:0057 https://rhn.redhat.com/errata/RHSA-2009-0057.html SUSE-SR:2009:004 http://lists.opensuse.org/opensuse-security-announce/2009-02/msg00002.html https://bugzilla.redhat.com/show_bug.cgi?id=480224 https://bugzilla.redhat.com/show_bug.cgi?id=480488 oval:org.mitre.oval:def:10366 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10366 squirrelmail-sessionid-session-hijacking(48115) https://exchange.xforce.ibmcloud.com/vulnerabilities/48115 Common Vulnerability Exposure (CVE) ID: CVE-2009-1580 http://lists.apple.com/archives/security-announce/2010//Jun/msg00001.html BugTraq ID: 34916 http://www.securityfocus.com/bid/34916 Debian Security Information: DSA-1802 (Google Search) http://www.debian.org/security/2009/dsa-1802 https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00566.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00572.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00577.html http://www.mandriva.com/security/advisories?name=MDVSA-2009:110 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10107 http://secunia.com/advisories/35052 http://secunia.com/advisories/35073 http://secunia.com/advisories/35140 http://secunia.com/advisories/40220 http://www.vupen.com/english/advisories/2009/1296 http://www.vupen.com/english/advisories/2010/1481 XForce ISS Database: squirrelmail-baseuri-session-hijacking(50462) https://exchange.xforce.ibmcloud.com/vulnerabilities/50462
Copyright	Copyright (C) 2015 Greenbone AG