ID de Prueba:	1.3.6.1.4.1.25623.1.0.58103
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:056 (tcpdump)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to tcpdump announced via advisory MDKSA-2007:056. Off-by-one buffer overflow in the parse_elements function in the 802.11 printer code (print-802_11.c) for tcpdump 3.9.5 and earlier allows remote attackers to cause a denial of service (crash) via a crafted 802.11 frame. NOTE: this was originally referred to as heap-based, but it might be stack-based. Updated packages have been patched to address this issue. Affected: 2006.0, 2007.0, Corporate 3.0, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2007:056 Risk factor : High CVSS Score: 6.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1218 http://lists.apple.com/archives/security-announce/2007/Dec/msg00002.html BugTraq ID: 22772 http://www.securityfocus.com/bid/22772 Cert/CC Advisory: TA07-352A http://www.us-cert.gov/cas/techalerts/TA07-352A.html Debian Security Information: DSA-1272 (Google Search) http://www.debian.org/security/2007/dsa-1272 http://fedoranews.org/cms/node/2798 http://fedoranews.org/cms/node/2799 http://seclists.org/fulldisclosure/2007/Mar/0003.html http://www.mandriva.com/security/advisories?name=MDKSA-2007:056 http://www.mandriva.com/security/advisories?name=MDKSA-2007:155 http://cvs.tcpdump.org/cgi-bin/cvsweb/tcpdump/print-802_11.c?r1=1.31.2.11&r2=1.31.2.12 https://bugs.gentoo.org/show_bug.cgi?id=168916 http://www.osvdb.org/32427 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9520 http://www.redhat.com/support/errata/RHSA-2007-0368.html http://www.redhat.com/support/errata/RHSA-2007-0387.html http://www.securitytracker.com/id?1017717 http://secunia.com/advisories/24318 http://secunia.com/advisories/24354 http://secunia.com/advisories/24423 http://secunia.com/advisories/24451 http://secunia.com/advisories/24583 http://secunia.com/advisories/24610 http://secunia.com/advisories/27580 http://secunia.com/advisories/28136 TurboLinux Advisory: TLSA-2007-46 http://www.turbolinux.com/security/2007/TLSA-2007-46.txt http://www.ubuntu.com/usn/usn-429-1 http://www.vupen.com/english/advisories/2007/0793 http://www.vupen.com/english/advisories/2007/4238 XForce ISS Database: tcpdump-print80211c-bo(32749) https://exchange.xforce.ibmcloud.com/vulnerabilities/32749
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.