ID de Prueba:	1.3.6.1.4.1.25623.1.0.58209
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:092 (freeradius)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to freeradius announced via advisory MDKSA-2007:092. Multiple buffer overflows were found in the FreeRADIUS package version 1.0.4 and prior that could allow a remote attacker to cause a crash via the rlm_sqlcounter module (CVE-2005-4746). As well, an SQL injection vulnerability was also found in the rlm_sqlcounter that could allow a remote attacker to execute arbitrary SQL commands via unknown attack vectors (CVE-2005-4745). Updated packages have been patched to correct this issue. Affected: Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2007:092 Risk factor : High CVSS Score: 7.8
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2005-4746 17293 http://www.securityfocus.com/bid/17293 19324 http://www.osvdb.org/19324 19325 http://www.osvdb.org/19325 DSA-1145 http://www.debian.org/security/2006/dsa-1145 MDKSA-2006:066 http://www.mandriva.com/security/advisories?name=MDKSA-2006:066 MDKSA-2007:092 http://www.mandriva.com/security/advisories?name=MDKSA-2007:092 http://www.freeradius.org/security.html Common Vulnerability Exposure (CVE) ID: CVE-2005-4745 17294 http://www.securityfocus.com/bid/17294 19323 http://www.osvdb.org/19323
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.