ID de Prueba:	1.3.6.1.4.1.25623.1.0.66928
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2010:044 (mysql)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to mysql announced via advisory MDVSA-2010:044. A vulnerabilitiy has been found and corrected in mysql: MySQL is vulnerable to a symbolic link attack when the data home directory contains a symlink to a different filesystem which allows remote authenticated users to bypass intended access restrictions (CVE-2008-7247). The updated packages have been patched to correct these issues. Affected: 2009.1, 2010.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2010:044 Risk factor : High CVSS Score: 6.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-7247 http://lists.apple.com/archives/security-announce/2010//Mar/msg00001.html BugTraq ID: 38043 http://www.securityfocus.com/bid/38043 http://www.mandriva.com/security/advisories?name=MDVSA-2010:044 https://bugzilla.redhat.com/show_bug.cgi?id=543619 http://lists.mysql.com/commits/59711 http://marc.info/?l=oss-security&m=125908040022018&w=2 http://secunia.com/advisories/38517 SuSE Security Announcement: SUSE-SR:2010:011 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-05/msg00001.html SuSE Security Announcement: SUSE-SR:2010:021 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html http://www.ubuntu.com/usn/USN-1397-1 http://ubuntu.com/usn/usn-897-1 http://www.vupen.com/english/advisories/2010/1107
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.