Mandrake Local Security Checks : Mandriva Security Advisory MDVSA-2012:009 (perl)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.70683

Categoría: Mandrake Local Security Checks

Título: Mandriva Security Advisory MDVSA-2012:009 (perl)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to perl
announced via advisory MDVSA-2012:009.

A vulnerability has been found and corrected in perl:

Eval injection in the Digest module before 1.17 for Perl allows
context-dependent attackers to execute arbitrary commands via the
new constructor (CVE-2011-3597).

The updated packages have been patched to correct this issue.

Affected: Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2012:009

Risk factor : High

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2011-3597
46279
http://secunia.com/advisories/46279
49911
http://www.securityfocus.com/bid/49911
51457
http://secunia.com/advisories/51457
MDVSA-2012:008
http://www.mandriva.com/security/advisories?name=MDVSA-2012:008
MDVSA-2012:009
http://www.mandriva.com/security/advisories?name=MDVSA-2012:009
RHSA-2011:1424
http://www.redhat.com/support/errata/RHSA-2011-1424.html
RHSA-2011:1797
http://www.redhat.com/support/errata/RHSA-2011-1797.html
USN-1643-1
http://www.ubuntu.com/usn/USN-1643-1
http://aix.software.ibm.com/aix/efixes/security/perl_advisory2.asc
http://cpansearch.perl.org/src/GAAS/Digest-1.17/Changes
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735
https://bugzilla.redhat.com/show_bug.cgi?id=743010
oval:org.mitre.oval:def:19446
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19446

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.70683
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2012:009 (perl)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to perl announced via advisory MDVSA-2012:009. A vulnerability has been found and corrected in perl: Eval injection in the Digest module before 1.17 for Perl allows context-dependent attackers to execute arbitrary commands via the new constructor (CVE-2011-3597). The updated packages have been patched to correct this issue. Affected: Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2012:009 Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3597 46279 http://secunia.com/advisories/46279 49911 http://www.securityfocus.com/bid/49911 51457 http://secunia.com/advisories/51457 MDVSA-2012:008 http://www.mandriva.com/security/advisories?name=MDVSA-2012:008 MDVSA-2012:009 http://www.mandriva.com/security/advisories?name=MDVSA-2012:009 RHSA-2011:1424 http://www.redhat.com/support/errata/RHSA-2011-1424.html RHSA-2011:1797 http://www.redhat.com/support/errata/RHSA-2011-1797.html USN-1643-1 http://www.ubuntu.com/usn/USN-1643-1 http://aix.software.ibm.com/aix/efixes/security/perl_advisory2.asc http://cpansearch.perl.org/src/GAAS/Digest-1.17/Changes http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705 http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10735 https://bugzilla.redhat.com/show_bug.cgi?id=743010 oval:org.mitre.oval:def:19446 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19446
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com