Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2005:114 (leafnode)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.54332

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2005:114 (leafnode)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to leafnode
announced via advisory MDKSA-2005:114.

A number of vulnerabilities in the leafnode NNTP server package have
been found:

A vulnerability in the fetchnews program that could under some
circumstances cause a wait for input that never arrives, which in
turn would cause fetchnews to hang (CVE-2004-2068).

Two vulnerabilities in the fetchnews program can cause fetchnews to
crash when the upstream server closes the connection and leafnode is
receiving an article header or an article body, which prevent leafnode
from querying other servers that are listed after that particular
server in the configuration file (CVE-2005-1453).

Finally, another vulnerability in the fetchnews program could also
cuase a wait for input that never arrives, causing fetchnews to
hang (CVE-2005-1911).

The updated packages have been patched to correct this problem.

Affected versions: 10.1, 10.2, Corporate 3.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:114

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2004-2068
http://www.osvdb.org/3441
http://secunia.com/advisories/10590
http://www.derkeiler.com/Mailing-Lists/VulnWatch/2004-01/0009.html
XForce ISS Database: leafnode-fetchnews-nntp-dos(14189)
https://exchange.xforce.ibmcloud.com/vulnerabilities/14189
Common Vulnerability Exposure (CVE) ID: CVE-2005-1453
http://secunia.com/advisories/15252
http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html
http://www.vupen.com/english/advisories/2005/0468
Common Vulnerability Exposure (CVE) ID: CVE-2005-1911

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.54332
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2005:114 (leafnode)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to leafnode announced via advisory MDKSA-2005:114. A number of vulnerabilities in the leafnode NNTP server package have been found: A vulnerability in the fetchnews program that could under some circumstances cause a wait for input that never arrives, which in turn would cause fetchnews to hang (CVE-2004-2068). Two vulnerabilities in the fetchnews program can cause fetchnews to crash when the upstream server closes the connection and leafnode is receiving an article header or an article body, which prevent leafnode from querying other servers that are listed after that particular server in the configuration file (CVE-2005-1453). Finally, another vulnerability in the fetchnews program could also cuase a wait for input that never arrives, causing fetchnews to hang (CVE-2005-1911). The updated packages have been patched to correct this problem. Affected versions: 10.1, 10.2, Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2005:114 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2004-2068 http://www.osvdb.org/3441 http://secunia.com/advisories/10590 http://www.derkeiler.com/Mailing-Lists/VulnWatch/2004-01/0009.html XForce ISS Database: leafnode-fetchnews-nntp-dos(14189) https://exchange.xforce.ibmcloud.com/vulnerabilities/14189 Common Vulnerability Exposure (CVE) ID: CVE-2005-1453 http://secunia.com/advisories/15252 http://archives.neohapsis.com/archives/vulnwatch/2005-q2/0037.html http://www.vupen.com/english/advisories/2005/0468 Common Vulnerability Exposure (CVE) ID: CVE-2005-1911
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com