ID de Prueba:	1.3.6.1.4.1.25623.1.0.66548
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2009:340 (jpgraph)
Resumen:	The remote host is missing an update to jpgraph;announced via advisory MDVSA-2009:340.
Descripción:	Summary: The remote host is missing an update to jpgraph announced via advisory MDVSA-2009:340. Vulnerability Insight: A vulnerability has been found and corrected in jpgraph: Multiple cross-site scripting (XSS) vulnerabilities in the GetURLArguments function in jpgraph.php in Aditus Consulting JpGraph 3.0.6 allow remote attackers to inject arbitrary web script or HTML via a key to csim_in_html_ex1.php, and other unspecified vectors (CVE-2009-4422). This update provides a solution to this vulnerability. Affected: Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4422 BugTraq ID: 37483 http://www.securityfocus.com/bid/37483 Bugtraq: 20091222 XSS Vulnerability in JpGraph 3.0.6 (Google Search) http://www.securityfocus.com/archive/1/508586/100/0/threaded http://www.mandriva.com/security/advisories?name=MDVSA-2009:340 http://osvdb.org/61268 http://secunia.com/advisories/37832
Copyright	Copyright (C) 2009 E-Soft Inc.

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.