ID de Prueba:	1.3.6.1.4.1.25623.1.0.68272
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2010:184 (samba)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to samba announced via advisory MDVSA-2010:184. A vulnerability has been found and corrected in samba: Stack-based buffer overflow in the (1) sid_parse and (2) dom_sid_parse functions in Samba before 3.5.5 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted Windows Security ID (SID) on a file share (CVE-2010-3069). The updated packages have been patched to correct this issue. Affected: 2008.0, 2009.0, 2009.1, 2010.0, 2010.1, Corporate 4.0, Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2010:184 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-3069 1024434 http://www.securitytracker.com/id?1024434 20101207 VMSA-2010-0019 VMware ESX third party updates for Service Console http://www.securityfocus.com/archive/1/515055/100/0/threaded 41354 http://secunia.com/advisories/41354 41447 http://secunia.com/advisories/41447 42531 http://secunia.com/advisories/42531 42885 http://secunia.com/advisories/42885 43212 http://www.securityfocus.com/bid/43212 ADV-2010-2378 http://www.vupen.com/english/advisories/2010/2378 ADV-2010-3126 http://www.vupen.com/english/advisories/2010/3126 ADV-2011-0091 http://www.vupen.com/english/advisories/2011/0091 APPLE-SA-2011-03-21-1 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html APPLE-SA-2011-06-23-1 http://lists.apple.com/archives/security-announce/2011//Jun/msg00000.html FEDORA-2010-14627 http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047650.html FEDORA-2010-14678 http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047697.html FEDORA-2010-14768 http://lists.fedoraproject.org/pipermail/package-announce/2010-September/047758.html HPSBUX02657 http://marc.info/?l=bugtraq&m=130835366526620&w=2 RHSA-2010:0860 http://www.redhat.com/support/errata/RHSA-2010-0860.html SSRT100460 SUSE-SR:2010:018 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html SUSE-SR:2010:019 http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00006.html USN-987-1 http://www.ubuntu.com/usn/USN-987-1 http://support.apple.com/kb/HT4581 http://support.apple.com/kb/HT4723 http://us1.samba.org/samba/history/samba-3.5.5.html http://us1.samba.org/samba/security/CVE-2010-3069.html http://www.vmware.com/security/advisories/VMSA-2010-0019.html samba-sidparse-bo(61773) https://exchange.xforce.ibmcloud.com/vulnerabilities/61773
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.