ID de Prueba:	1.3.6.1.4.1.25623.1.0.58567
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2007:177 (MySQL)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to MySQL announced via advisory MDKSA-2007:177. A vulnerability was found in MySQL's authentication protocol, making it possible for a remote unauthenticated attacker to send a specially crafted authentication request to the MySQL server causing it to crash (CVE-2007-3780). Another flaw was discovered in MySQL that allowed remote authenticated users to gain update privileges for a table in another database via a view that refers to the external table (CVE-2007-3782). Updated packages have been patched to prevent these issues. Affected: 2007.0, 2007.1, Corporate 4.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2007:177 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-3780 BugTraq ID: 25017 http://www.securityfocus.com/bid/25017 Bugtraq: 20070717 rPSA-2007-0143-1 mysql mysql-bench mysql-server (Google Search) http://www.securityfocus.com/archive/1/473874/100/0/threaded Debian Security Information: DSA-1413 (Google Search) http://www.debian.org/security/2007/dsa-1413 http://security.gentoo.org/glsa/glsa-200708-10.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:177 http://bugs.mysql.com/bug.php?id=28984 http://lists.mysql.com/announce/470 http://osvdb.org/36732 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11058 http://www.redhat.com/support/errata/RHSA-2007-0875.html http://www.redhat.com/support/errata/RHSA-2007-0894.html http://www.securitytracker.com/id?1018629 http://secunia.com/advisories/25301 http://secunia.com/advisories/26073 http://secunia.com/advisories/26430 http://secunia.com/advisories/26498 http://secunia.com/advisories/26621 http://secunia.com/advisories/26710 http://secunia.com/advisories/26987 http://secunia.com/advisories/27155 http://secunia.com/advisories/27823 SuSE Security Announcement: SUSE-SR:2007:019 (Google Search) http://www.novell.com/linux/security/advisories/2007_19_sr.html https://usn.ubuntu.com/528-1/ http://www.vupen.com/english/advisories/2008/1000/references Common Vulnerability Exposure (CVE) ID: CVE-2007-3782 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10563 http://www.redhat.com/support/errata/RHSA-2008-0364.html http://securitytracker.com/id?1018663 http://secunia.com/advisories/30351
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.