FreeBSD Local Security Checks : FreeBSD Ports: gtar

Resumen de Precio/Funciones | Ordenar | Nuevas Vulnerabilidades | Confidencialidad | Búsqueda de Vulnerabilidad

Búsqueda de Vulnerabilidad		Buscar 94899 Descripciones CVE y 51984 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56350

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Ports: gtar

Resumen: FreeBSD Ports: gtar

Descripción: Description:
The remote host is missing an update to the system
as announced in the referenced advisory.

The following package is affected: gtar

CVE-2006-0300
Buffer overflow in tar 1.14 through 1.15.90 allows user-complicit
attackers to cause a denial of service (application crash) and
possibly execute code via unspecified vectors involving PAX extended
headers.

Solution:
Update your system with the appropriate patches or
software upgrades.

CVSS Score:
5.1

CVSS Vector:
AV:N/AC:H/Au:N/C:P/I:P/A:P

Referencia Cruzada: BugTraq ID: 16764
Common Vulnerability Exposure (CVE) ID: CVE-2006-0300
http://lists.gnu.org/archive/html/bug-tar/2006-02/msg00051.html
http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html
http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html
Debian Security Information: DSA-987 (Google Search)
http://www.debian.org/security/2006/dsa-987
http://www.securityfocus.com/archive/1/archive/1/430299/100/0/threaded
http://www.gentoo.org/security/en/glsa/glsa-200603-06.xml
http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:046
http://www.openpkg.org/security/OpenPKG-SA-2006.006-tar.html
http://www.redhat.com/support/errata/RHSA-2006-0232.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-241646-1
SuSE Security Announcement: SUSE-SR:2006:005 (Google Search)
http://www.novell.com/linux/security/advisories/2006_05_sr.html
http://www.trustix.org/errata/2006/0010
http://www.ubuntulinux.org/support/documentation/usn/usn-257-1
Cert/CC Advisory: TA07-072A
http://www.us-cert.gov/cas/techalerts/TA07-072A.html
Cert/CC Advisory: TA07-109A
http://www.us-cert.gov/cas/techalerts/TA07-109A.html
http://www.securityfocus.com/bid/16764
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5252
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5978
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5993
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6094
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9295
http://www.vupen.com/english/advisories/2006/0684
http://www.vupen.com/english/advisories/2007/0930
http://www.vupen.com/english/advisories/2007/1470
http://www.vupen.com/english/advisories/2008/2518
http://www.osvdb.org/23371
http://securitytracker.com/id?1015705
http://secunia.com/advisories/18976
http://secunia.com/advisories/18973
http://secunia.com/advisories/18999
http://secunia.com/advisories/19093
http://secunia.com/advisories/19130
http://secunia.com/advisories/19152
http://secunia.com/advisories/19236
http://secunia.com/advisories/19016
http://secunia.com/advisories/20042
http://secunia.com/advisories/24479
http://secunia.com/advisories/24966
http://securityreason.com/securityalert/480
http://securityreason.com/securityalert/543
XForce ISS Database: gnu-tar-pax-headers-bo(24855)
http://xforce.iss.net/xforce/xfdb/24855

Copyright Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 51984 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

Registro de Nuevo Usuario
Email:

Usuario:

Contraseña:

Envíeme por email sus boletines mensuales, informándome los últimos servicios, mejoras y encuestas.

Por favor envíeme por email un anuncio de prueba de vulnerabilidades siempre que se agregue una nueva prueba.

Privacidad

Ingreso de Usuario Registrado

Usuario:

Contraseña:

¿Olvidó su usuario o contraseña??

Email/ID de Usario:

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56350
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: gtar
Resumen:	FreeBSD Ports: gtar
Descripción:	Description: The remote host is missing an update to the system as announced in the referenced advisory. The following package is affected: gtar CVE-2006-0300 Buffer overflow in tar 1.14 through 1.15.90 allows user-complicit attackers to cause a denial of service (application crash) and possibly execute code via unspecified vectors involving PAX extended headers. Solution: Update your system with the appropriate patches or software upgrades. CVSS Score: 5.1 CVSS Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P
Referencia Cruzada:	BugTraq ID: 16764 Common Vulnerability Exposure (CVE) ID: CVE-2006-0300 http://lists.gnu.org/archive/html/bug-tar/2006-02/msg00051.html http://lists.apple.com/archives/Security-announce/2007/Apr/msg00001.html http://lists.apple.com/archives/security-announce/2007/Mar/msg00002.html Debian Security Information: DSA-987 (Google Search) http://www.debian.org/security/2006/dsa-987 http://www.securityfocus.com/archive/1/archive/1/430299/100/0/threaded http://www.gentoo.org/security/en/glsa/glsa-200603-06.xml http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:046 http://www.openpkg.org/security/OpenPKG-SA-2006.006-tar.html http://www.redhat.com/support/errata/RHSA-2006-0232.html http://sunsolve.sun.com/search/document.do?assetkey=1-26-241646-1 SuSE Security Announcement: SUSE-SR:2006:005 (Google Search) http://www.novell.com/linux/security/advisories/2006_05_sr.html http://www.trustix.org/errata/2006/0010 http://www.ubuntulinux.org/support/documentation/usn/usn-257-1 Cert/CC Advisory: TA07-072A http://www.us-cert.gov/cas/techalerts/TA07-072A.html Cert/CC Advisory: TA07-109A http://www.us-cert.gov/cas/techalerts/TA07-109A.html http://www.securityfocus.com/bid/16764 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5252 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5978 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5993 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:6094 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:9295 http://www.vupen.com/english/advisories/2006/0684 http://www.vupen.com/english/advisories/2007/0930 http://www.vupen.com/english/advisories/2007/1470 http://www.vupen.com/english/advisories/2008/2518 http://www.osvdb.org/23371 http://securitytracker.com/id?1015705 http://secunia.com/advisories/18976 http://secunia.com/advisories/18973 http://secunia.com/advisories/18999 http://secunia.com/advisories/19093 http://secunia.com/advisories/19130 http://secunia.com/advisories/19152 http://secunia.com/advisories/19236 http://secunia.com/advisories/19016 http://secunia.com/advisories/20042 http://secunia.com/advisories/24479 http://secunia.com/advisories/24966 http://securityreason.com/securityalert/480 http://securityreason.com/securityalert/543 XForce ISS Database: gnu-tar-pax-headers-bo(24855) http://xforce.iss.net/xforce/xfdb/24855
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com