ID de Prueba:	1.3.6.1.4.1.25623.1.0.57319
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2006:158 (MySQL)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to MySQL announced via advisory MDKSA-2006:158. MySQL before 4.1.13 allows local users to cause a denial of service (persistent replication slave crash) via a query with multiupdate and subselects. (CVE-2006-4380) There is a bug in the MySQL-Max (and MySQL) init script where the script was not waiting for the mysqld daemon to fully stop. This impacted the restart beahvior during updates, as well as scripted setups that temporarily stopped the server to backup the database files. (Bug #15724) The Corporate 3 and MNF2 products are not affected by these issues. Packages have been patched to correct these issues. Affected: 2006.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2006:158 http://qa.mandriva.com/show_bug.cgi?id=15724 Risk factor : High CVSS Score: 5.1
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4380 BugTraq ID: 19794 http://www.securityfocus.com/bid/19794 Debian Security Information: DSA-1169 (Google Search) http://www.debian.org/security/2006/dsa-1169 http://www.mandriva.com/security/advisories?name=MDKSA-2006:158 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10686 http://securitytracker.com/id?1016790 http://secunia.com/advisories/21712 http://secunia.com/advisories/21762 Common Vulnerability Exposure (CVE) ID: CVE-2006-4389 http://lists.apple.com/archives/Security-announce/2006/Sep/msg00000.html BugTraq ID: 19976 http://www.securityfocus.com/bid/19976 Bugtraq: 20060913 Multiple Vulnerabilities in Apple QuickTime (Google Search) http://www.securityfocus.com/archive/1/445888/100/0/threaded Cert/CC Advisory: TA06-256A http://www.us-cert.gov/cas/techalerts/TA06-256A.html CERT/CC vulnerability note: VU#540348 http://www.kb.cert.org/vuls/id/540348 http://security.gentoo.org/glsa/glsa-200803-08.xml http://www.osvdb.org/28769 http://securitytracker.com/id?1016830 http://secunia.com/advisories/21893 http://secunia.com/advisories/29182 http://securityreason.com/securityalert/1554 http://www.vupen.com/english/advisories/2006/3577 XForce ISS Database: quicktime-flashpix-code-execution(28938) https://exchange.xforce.ibmcloud.com/vulnerabilities/28938
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.