 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.52687 |
| Categoría: | Mandrake Local Security Checks |
| Título: | Mandrake Security Advisory MDKSA-2005:084 (gnutls) |
| Resumen: | NOSUMMARY |
| Descripción: | Description: The remote host is missing an update to gnutls announced via advisory MDKSA-2005:084. Two vulnerabilities were discovered in the GnuTLS library. The first is a vulnerability in the way GnuTLS does record packet parsing the second is a flaw in the RSA key export functionality. These could be exploited by a remote attacker to cause a Denial of Service to any program using the GnuTLS library. The provided packages have been patched to correct these issues. Affected versions: 10.1, 10.2 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:084 Risk factor : Medium CVSS Score: 5.0 |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2005-1431 BugTraq ID: 13477 http://www.securityfocus.com/bid/13477 http://lists.gnupg.org/pipermail/gnutls-dev/2005-April/000858.html http://www.osvdb.org/16054 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9238 http://www.redhat.com/support/errata/RHSA-2005-430.html http://securitytracker.com/id?1013861 http://secunia.com/advisories/15193 XForce ISS Database: gnutls-record-parsing-dos(20328) https://exchange.xforce.ibmcloud.com/vulnerabilities/20328 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |