ID de Prueba:	1.3.6.1.4.1.25623.1.0.56609
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2006:056 (xorg-x11)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to xorg-x11 announced via advisory MDKSA-2006:056. Versions of Xorg 6.9.0 and greater have a bug in xf86Init.c, which allows non-root users to use the -modulepath, -logfile and -configure options. This allows loading of arbitrary modules which will execute as the root user, as well as a local DoS by overwriting system files. Updated packages have been patched to correct these issues. Affected: 2006.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2006:056 Risk factor : High CVSS Score: 7.2
Referencia Cruzada:	BugTraq ID: 17169 Common Vulnerability Exposure (CVE) ID: CVE-2006-0745 http://www.securityfocus.com/bid/17169 Bugtraq: 20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0 (Google Search) http://www.securityfocus.com/archive/1/428230/100/0/threaded Bugtraq: 20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0 (Google Search) http://www.securityfocus.com/archive/1/428183/100/0/threaded http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html http://www.mandriva.com/security/advisories?name=MDKSA-2006:056 http://www.osvdb.org/24000 http://www.osvdb.org/24001 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697 http://securitytracker.com/id?1015793 http://secunia.com/advisories/19256 http://secunia.com/advisories/19307 http://secunia.com/advisories/19311 http://secunia.com/advisories/19316 http://secunia.com/advisories/19676 http://securityreason.com/securityalert/606 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1 SuSE Security Announcement: SUSE-SA:2006:016 (Google Search) http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html http://www.vupen.com/english/advisories/2006/1017 http://www.vupen.com/english/advisories/2006/1028 XForce ISS Database: xorg-geteuid-privilege-escalation(25341) https://exchange.xforce.ibmcloud.com/vulnerabilities/25341
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.