Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2004:094 (printer-drivers)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.50575

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2004:094 (printer-drivers)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to printer-drivers
announced via advisory MDKSA-2004:094.

The foomatic-rip filter, which is part of foomatic-filters package,
contains a vulnerability that allows anyone with access to CUPS, local
or remote, to execute arbitrary commands on the server. The updated
packages provide a fixed foomatic-rip filter that prevents this kind
of abuse.

Affected versions: 10.0, 9.2

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2004:094
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0801

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-0801
BugTraq ID: 11184
http://www.securityfocus.com/bid/11184
Conectiva Linux advisory: CLA-2004:880
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000880
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:094
SCO Security Bulletin: SCOSA-2005.12
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.12/SCOSA-2005.12.txt
http://secunia.com/advisories/12557/
http://secunia.com/advisories/20312
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000757.1-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1
SuSE Security Announcement: SUSE-SA:2004:031 (Google Search)
http://www.novell.com/linux/security/advisories/2004_31_cups.html
SuSE Security Announcement: SUSE-SA:2006:026 (Google Search)
http://lists.suse.com/archive/suse-security-announce/2006-May/0007.html
http://www.trustix.net/errata/2004/0047/
XForce ISS Database: foomatic-command-execution(17388)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17388

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.50575
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2004:094 (printer-drivers)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to printer-drivers announced via advisory MDKSA-2004:094. The foomatic-rip filter, which is part of foomatic-filters package, contains a vulnerability that allows anyone with access to CUPS, local or remote, to execute arbitrary commands on the server. The updated packages provide a fixed foomatic-rip filter that prevents this kind of abuse. Affected versions: 10.0, 9.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2004:094 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0801 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0801 BugTraq ID: 11184 http://www.securityfocus.com/bid/11184 Conectiva Linux advisory: CLA-2004:880 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000880 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:094 SCO Security Bulletin: SCOSA-2005.12 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.12/SCOSA-2005.12.txt http://secunia.com/advisories/12557/ http://secunia.com/advisories/20312 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000757.1-1 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201005-1 SuSE Security Announcement: SUSE-SA:2004:031 (Google Search) http://www.novell.com/linux/security/advisories/2004_31_cups.html SuSE Security Announcement: SUSE-SA:2006:026 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-May/0007.html http://www.trustix.net/errata/2004/0047/ XForce ISS Database: foomatic-command-execution(17388) https://exchange.xforce.ibmcloud.com/vulnerabilities/17388
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com