ID de Prueba:	1.3.6.1.4.1.25623.1.0.52680
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2005:083 (ethereal)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to ethereal announced via advisory MDKSA-2005:083. A number of vulnerabilities were discovered in previous version of Ethereal that have been fixed in the 0.10.11 release, including: - The ANSI A and DHCP dissectors are vulnerable to format string vulnerabilities. - The DISTCC, FCELS, SIP, ISIS, CMIP, CMP, CMS, CRMF, ESS, OCSP, PKIX1Explitit, PKIX Qualified, X.509, Q.931, MEGACO, NCP, ISUP, TCAP and Presentation dissectors are vulnerable to buffer overflows. - The KINK, WSP, SMB Mailslot, H.245, MGCP, Q.931, RPC, GSM and SMB NETLOGON dissectors are vulnerable to pointer handling errors. - The LMP, KINK, MGCP, RSVP, SRVLOC, EIGRP, MEGACO, DLSw, NCP and L2TP dissectors are vulnerable to looping problems. - The Telnet and DHCP dissectors could abort. - The TZSP, Bittorrent, SMB, MGCP and ISUP dissectors could cause a segmentation fault. - The WSP, 802.3 Slow protocols, BER, SMB Mailslot, SMB, NDPS, IAX2, RADIUS, SMB PIPE, MRDISC and TCAP dissectors could throw assertions. - The DICOM, NDPS and ICEP dissectors are vulnerable to memory handling errors. - The GSM MAP, AIM, Fibre Channel,SRVLOC, NDPS, LDAP and NTLMSSP dissectors could terminate abnormallly. Affected versions: 10.1, 10.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:083 http://www.ethereal.com/appnotes/enpa-sa-00019.html Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1456 13504 http://www.securityfocus.com/bid/13504 CLSA-2005:963 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000963 FLSA-2006:152922 http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00003.html RHSA-2005:427 http://www.redhat.com/support/errata/RHSA-2005-427.html http://www.ethereal.com/appnotes/enpa-sa-00019.html http://www.ethereal.com/news/item_20050504_01.html oval:org.mitre.oval:def:9700 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9700 Common Vulnerability Exposure (CVE) ID: CVE-2005-1457 oval:org.mitre.oval:def:9825 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9825 Common Vulnerability Exposure (CVE) ID: CVE-2005-1458 oval:org.mitre.oval:def:11348 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11348 Common Vulnerability Exposure (CVE) ID: CVE-2005-1459 oval:org.mitre.oval:def:11494 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11494 Common Vulnerability Exposure (CVE) ID: CVE-2005-1460 oval:org.mitre.oval:def:9970 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9970 Common Vulnerability Exposure (CVE) ID: CVE-2005-1461 oval:org.mitre.oval:def:9853 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9853 Common Vulnerability Exposure (CVE) ID: CVE-2005-1462 oval:org.mitre.oval:def:9713 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9713 Common Vulnerability Exposure (CVE) ID: CVE-2005-1463 oval:org.mitre.oval:def:10713 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10713 Common Vulnerability Exposure (CVE) ID: CVE-2005-1464 oval:org.mitre.oval:def:9534 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9534 Common Vulnerability Exposure (CVE) ID: CVE-2005-1465 oval:org.mitre.oval:def:10224 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10224 Common Vulnerability Exposure (CVE) ID: CVE-2005-1466 oval:org.mitre.oval:def:11024 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11024 Common Vulnerability Exposure (CVE) ID: CVE-2005-1467 oval:org.mitre.oval:def:9654 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9654 Common Vulnerability Exposure (CVE) ID: CVE-2005-1468 oval:org.mitre.oval:def:10049 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10049 Common Vulnerability Exposure (CVE) ID: CVE-2005-1469 oval:org.mitre.oval:def:9598 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9598 Common Vulnerability Exposure (CVE) ID: CVE-2005-1470 oval:org.mitre.oval:def:11804 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11804
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.