English | Deutsch | Español
 
Inicial ▼
Página inicial Acerca Nuestro Contáctenos Privacidad Programas de Asociados Testimonios En la Prensa Listas de Correos Abuso Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
 
Auditorias ▼
Inicial Dedicada Avanzada Estándar Periódica Sin Riesgo Escritorio Básica Sello FAQ Resumen de Precio/Funciones Ordenar Nuevas Pruebas Todas las Pruebas Confidencialidad Búsqueda de Vulnerabilidad Ejecutar Auditoría Programador IP Permissions Auditorías Personalizadas Cola Recordatorio Sellos Informes Estilos de Informes
DNS
Administrado ▼
Acerca de DNS Ordenar/Renovar Preguntas Frecuentes AUP Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password
Monitoreo
de Redes ▼
Enterprise Avanzado Estándarr Prueba Preguntas Frecuentes Resumen de Precio/Funciones Ordenar Muestras
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Iniciar sesión/Registrarse 
 
 Búsqueda de    
Vulnerabilidad   		     Buscar 324607 Descripciones CVE y
146377 Descripciones de Pruebas,
accesos 10,000+ referencias cruzadas.
Pruebas   CVE   Todos  

ID de Prueba:1.3.6.1.4.1.25623.1.0.55413
Categoría:Trustix Local Security Checks
Título:Trustix Security Advisory TSLSA-2005-0040 (Multiple packages)
Resumen:NOSUMMARY
Descripción:Description:

The remote host is missing updates announced in
advisory TSLSA-2005-0040.

bzip2 (CVE-2005-0758)
- SECURITY Fix: Command injection vulnerability in the bzgrep
- bzgrep did not handle shell metacharacters like 'pipe symbol' and '&' properly
when they occurred in input file names. This could be exploited to
execute arbitrary commands with user privileges if bzgrep was run in
an untrusted directory with specially crafted file names.

perl-compress-zlib (CVE-2005-1849).
- New upstream.
- SECURITY Fix: Previous version of Compress::Zlib contains a local
vulnerable version of zlib, which may lead to a buffer overflow.

proftpd (CVE-2005-2390)
- SECURITY Fix: Format string vulnerabilities
- Two vulnerabilities have been reported in ProFTPD, which can be
exploited by malicious users to disclose certain sensitive
information, cause a DoS (Denial of Service), or potentially
compromise a vulnerable system.

Solution:
Update your system with the packages as indicated in
the referenced security advisory.

https://secure1.securityspace.com/smysecure/catid.html?in=TSLSA-2005-0040

Risk factor : High

CVSS Score:
6.4

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2005-0758
1013928
http://securitytracker.com/id?1013928
13582
http://www.securityfocus.com/bid/13582
16371
http://www.osvdb.org/16371
18100
http://secunia.com/advisories/18100
19183
http://secunia.com/advisories/19183
20060301-01-U
ftp://patches.sgi.com/support/free/security/advisories/20060301-01.U.asc
22033
http://secunia.com/advisories/22033
25159
http://www.securityfocus.com/bid/25159
26235
http://secunia.com/advisories/26235
ADV-2007-2732
http://www.vupen.com/english/advisories/2007/2732
APPLE-SA-2007-07-31
http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.html
FLSA:158801
http://www.fedoralegacy.org/updates/FC2/2005-11-14-FLSA_2005_158801__Updated_bzip2_packages_fix_security_issues.html
GLSA-200505-05
http://www.gentoo.org/security/en/glsa/glsa-200505-05.xml
MDKSA-2006:026
http://www.mandriva.com/security/advisories?name=MDKSA-2006:026
MDKSA-2006:027
http://www.mandriva.com/security/advisories?name=MDKSA-2006:027
OpenPKG-SA-2007.002
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.002.html
RHSA-2005:357
http://rhn.redhat.com/errata/RHSA-2005-357.html
RHSA-2005:474
http://www.redhat.com/support/errata/RHSA-2005-474.html
SCOSA-2005.58
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.58/SCOSA-2005.58.txt
SSA:2006-262
http://slackware.com/security/viewer.php?l=slackware-security&y=2006&m=slackware-security.555852
USN-158-1
http://www.ubuntu.com/usn/usn-158-1
gzip-zgrep-file-installation(20539)
https://exchange.xforce.ibmcloud.com/vulnerabilities/20539
http://bugs.gentoo.org/show_bug.cgi?id=90626
http://docs.info.apple.com/article.html?artnum=306172
oval:org.mitre.oval:def:1081
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1081
oval:org.mitre.oval:def:1107
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1107
oval:org.mitre.oval:def:9797
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9797
Common Vulnerability Exposure (CVE) ID: CVE-2005-1849
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
BugTraq ID: 14340
http://www.securityfocus.com/bid/14340
Bugtraq: 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates (Google Search)
http://www.securityfocus.com/archive/1/464745/100/0/threaded
Debian Security Information: DSA-1026 (Google Search)
http://www.debian.org/security/2006/dsa-1026
Debian Security Information: DSA-763 (Google Search)
http://www.debian.org/security/2005/dsa-763
Debian Security Information: DSA-797 (Google Search)
http://www.debian.org/security/2005/dsa-797
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=162680
http://www.gentoo.org/security/en/glsa/glsa-200509-18.xml
http://www.gentoo.org/security/en/glsa/glsa-200603-18.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2005:196
http://www.mandriva.com/security/advisories?name=MDKSA-2006:070
http://security.debian.org/pool/updates/main/z/zlib/zlib_1.2.2-4.sarge.2.diff.gz
http://www.osvdb.org/18141
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11402
http://www.redhat.com/support/errata/RHSA-2005-584.html
http://www.redhat.com/support/errata/RHSA-2008-0629.html
SCO Security Bulletin: SCOSA-2006.6
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.6/SCOSA-2006.6.txt
http://securitytracker.com/id?1014540
http://secunia.com/advisories/16137
http://secunia.com/advisories/17326
http://secunia.com/advisories/17516
http://secunia.com/advisories/18377
http://secunia.com/advisories/19334
http://secunia.com/advisories/19550
http://secunia.com/advisories/19597
http://secunia.com/advisories/24788
http://secunia.com/advisories/31492
SuSE Security Announcement: SUSE-SA:2005:043 (Google Search)
http://www.novell.com/linux/security/advisories/2005_43_zlib.html
http://www.ubuntulinux.org/usn/usn-151-3
http://www.vupen.com/english/advisories/2007/1267
XForce ISS Database: zlib-codetable-dos(21456)
https://exchange.xforce.ibmcloud.com/vulnerabilities/21456
Common Vulnerability Exposure (CVE) ID: CVE-2005-2390
BugTraq ID: 14380
http://www.securityfocus.com/bid/14380
BugTraq ID: 14381
http://www.securityfocus.com/bid/14381
Debian Security Information: DSA-795 (Google Search)
http://www.debian.org/security/2005/dsa-795
http://marc.info/?l=bugtraq&m=112604373503912&w=2
http://secunia.com/advisories/16181
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.

Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.



© 1998-2025 E-Soft Inc. Todos los derechos reservados.