ID de Prueba:	1.3.6.1.4.1.25623.1.0.67916
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2010:164 (phpmyadmin)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to phpmyadmin announced via advisory MDVSA-2010:164. A vulnerability has been found and corrected in phpmyadmin: It was possible to conduct a XSS attack using crafted URLs or POST parameters on several pages (CVE-2010-3056). This upgrade provides phpmyadmin 3.3.5.1 which is not vulnerable for this security issue. Affected: Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2010:164 Risk factor : Medium CVSS Score: 4.3
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3056 BugTraq ID: 42584 http://www.securityfocus.com/bid/42584 Debian Security Information: DSA-2097 (Google Search) http://www.debian.org/security/2010/dsa-2097 http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045991.html http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045997.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:163 http://www.mandriva.com/security/advisories?name=MDVSA-2010:164 http://yehg.net/lab/pr0js/advisories/phpmyadmin/%5Bphpmyadmin-3.3.5%5D_cross_site_scripting%28XSS%29 http://secunia.com/advisories/41000 http://secunia.com/advisories/41185 http://www.vupen.com/english/advisories/2010/2223 http://www.vupen.com/english/advisories/2010/2231
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.