Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2003:011 (fetchmail)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.50675

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2003:011 (fetchmail)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to fetchmail
announced via advisory MDKSA-2003:011.

A vulnerability was discovered in all versions of fetchmail prior to 6.2.0
that allows a remote attacker to crash fetchmail and potentially execute
arbitrary code by sending carefully crafted email wihch is then parsed by
fetchmail. The vulnerability has been fixed in these patched packages of
fetchmail.

Affected versions: 7.2, 8.0, 8.1, 8.2, 9.0,
Single Network Firewall 7.2

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2003:011
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1365
http://security.e-matters.de/advisories/052002.html

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2002-1365
BugTraq ID: 6390
http://www.securityfocus.com/bid/6390
Bugtraq: 20021213 Advisory 05/2002: Another Fetchmail Remote Vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=103979751818638&w=2
Bugtraq: 20021215 GLSA: fetchmail (Google Search)
http://marc.info/?l=bugtraq&m=104004858802000&w=2
Caldera Security Advisory: CSSA-2003-001.0
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-001.0.txt
Conectiva Linux advisory: CLA-2002:554
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000554
Debian Security Information: DSA-216 (Google Search)
http://www.debian.org/security/2002/dsa-216
En Garde Linux Advisory: ESA-20030127-002
Immunix Linux Advisory: IMNX-2003-7+-023-01
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:011
http://security.e-matters.de/advisories/052002.html
http://www.redhat.com/support/errata/RHSA-2002-293.html
http://www.redhat.com/support/errata/RHSA-2002-294.html
http://www.redhat.com/support/errata/RHSA-2003-155.html
SuSE Security Announcement: SuSE-SA:2003:001 (Google Search)
XForce ISS Database: fetchmail-address-header-bo(10839)
https://exchange.xforce.ibmcloud.com/vulnerabilities/10839

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.50675
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2003:011 (fetchmail)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to fetchmail announced via advisory MDKSA-2003:011. A vulnerability was discovered in all versions of fetchmail prior to 6.2.0 that allows a remote attacker to crash fetchmail and potentially execute arbitrary code by sending carefully crafted email wihch is then parsed by fetchmail. The vulnerability has been fixed in these patched packages of fetchmail. Affected versions: 7.2, 8.0, 8.1, 8.2, 9.0, Single Network Firewall 7.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2003:011 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-1365 http://security.e-matters.de/advisories/052002.html Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2002-1365 BugTraq ID: 6390 http://www.securityfocus.com/bid/6390 Bugtraq: 20021213 Advisory 05/2002: Another Fetchmail Remote Vulnerability (Google Search) http://marc.info/?l=bugtraq&m=103979751818638&w=2 Bugtraq: 20021215 GLSA: fetchmail (Google Search) http://marc.info/?l=bugtraq&m=104004858802000&w=2 Caldera Security Advisory: CSSA-2003-001.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-001.0.txt Conectiva Linux advisory: CLA-2002:554 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000554 Debian Security Information: DSA-216 (Google Search) http://www.debian.org/security/2002/dsa-216 En Garde Linux Advisory: ESA-20030127-002 Immunix Linux Advisory: IMNX-2003-7+-023-01 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:011 http://security.e-matters.de/advisories/052002.html http://www.redhat.com/support/errata/RHSA-2002-293.html http://www.redhat.com/support/errata/RHSA-2002-294.html http://www.redhat.com/support/errata/RHSA-2003-155.html SuSE Security Announcement: SuSE-SA:2003:001 (Google Search) XForce ISS Database: fetchmail-address-header-bo(10839) https://exchange.xforce.ibmcloud.com/vulnerabilities/10839
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com