Turbolinux Local Security Tests : Turbolinux TLSA-2005-74 (ruby)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.53873

Categoría: Turbolinux Local Security Tests

Título: Turbolinux TLSA-2005-74 (ruby)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to ruby
announced via advisory TLSA-2005-74.

Ruby is an interpreted scripting language designed to allow quick and
easy object-oriented programming. It has many features to process text
files and to perform system management tasks (as in Perl). It is simple,
straight-forward, and extensible.

The XMLRPC server vulnerability exists in ruby.

This vulnerability may allow remote attackers to execute arbitrary code.

Solution: Please use the turbopkg (zabom) tool to apply the update.
https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2005-74

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-1992
14016
http://www.securityfocus.com/bid/14016
16920
http://secunia.com/advisories/16920/
APPLE-SA-2005-09-22
http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html
DSA-748
http://www.debian.org/security/2005/dsa-748
ESB-2005.0732
http://www.auscert.org.au/5509
P-312
http://www.ciac.org/ciac/bulletins/p-312.shtml
RHSA-2005:543
http://www.redhat.com/support/errata/RHSA-2005-543.html
SUSE-SR:2005:018
http://www.novell.com/linux/security/advisories/2005_18_sr.html
VU#684913
http://www.kb.cert.org/vuls/id/684913
http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-core/5237
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=315064
http://www2.ruby-lang.org/en/20050701.html
oval:org.mitre.oval:def:10819
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10819

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.53873
Categoría:	Turbolinux Local Security Tests
Título:	Turbolinux TLSA-2005-74 (ruby)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to ruby announced via advisory TLSA-2005-74. Ruby is an interpreted scripting language designed to allow quick and easy object-oriented programming. It has many features to process text files and to perform system management tasks (as in Perl). It is simple, straight-forward, and extensible. The XMLRPC server vulnerability exists in ruby. This vulnerability may allow remote attackers to execute arbitrary code. Solution: Please use the turbopkg (zabom) tool to apply the update. https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2005-74 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-1992 14016 http://www.securityfocus.com/bid/14016 16920 http://secunia.com/advisories/16920/ APPLE-SA-2005-09-22 http://lists.apple.com/archives/security-announce/2005/Sep/msg00002.html DSA-748 http://www.debian.org/security/2005/dsa-748 ESB-2005.0732 http://www.auscert.org.au/5509 P-312 http://www.ciac.org/ciac/bulletins/p-312.shtml RHSA-2005:543 http://www.redhat.com/support/errata/RHSA-2005-543.html SUSE-SR:2005:018 http://www.novell.com/linux/security/advisories/2005_18_sr.html VU#684913 http://www.kb.cert.org/vuls/id/684913 http://blade.nagaokaut.ac.jp/cgi-bin/scat.rb/ruby/ruby-core/5237 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=315064 http://www2.ruby-lang.org/en/20050701.html oval:org.mitre.oval:def:10819 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10819
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com