Mandrake Local Security Checks : Mandriva Security Advisory MDVSA-2012:025 (samba)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.71133

Categoría: Mandrake Local Security Checks

Título: Mandriva Security Advisory MDVSA-2012:025 (samba)

Resumen: NOSUMMARY

Descripción: Description:
The remote host is missing an update to samba
announced via advisory MDVSA-2012:025.

A vulnerability has been found and corrected in samba:

Heap-based buffer overflow in process.c in smbd in Samba allows remote
attackers to cause a denial of service (daemon crash) or possibly
execute arbitrary code via a Batched (aka AndX) request that triggers
infinite recursion (CVE-2012-0870).

The updated packages have been patched to correct this issue.

Affected: Enterprise Server 5.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2012:025

Risk factor : High

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2012-0870
48116
http://secunia.com/advisories/48116
48186
http://secunia.com/advisories/48186
48844
http://secunia.com/advisories/48844
48879
http://secunia.com/advisories/48879
APPLE-SA-2012-05-09-1
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
SUSE-SU-2012:0337
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00008.html
SUSE-SU-2012:0338
http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00009.html
SUSE-SU-2012:0502
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00008.html
SUSE-SU-2012:0515
http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00014.html
USN-1374-1
http://www.ubuntu.com/usn/USN-1374-1
blackberry-playbook-samba-code-execution(73361)
https://exchange.xforce.ibmcloud.com/vulnerabilities/73361
http://btsc.webapps.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB29565
http://support.apple.com/kb/HT5281
https://bugzilla.redhat.com/show_bug.cgi?id=795509

Copyright Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.71133
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Security Advisory MDVSA-2012:025 (samba)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to samba announced via advisory MDVSA-2012:025. A vulnerability has been found and corrected in samba: Heap-based buffer overflow in process.c in smbd in Samba allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a Batched (aka AndX) request that triggers infinite recursion (CVE-2012-0870). The updated packages have been patched to correct this issue. Affected: Enterprise Server 5.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2012:025 Risk factor : High
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2012-0870 48116 http://secunia.com/advisories/48116 48186 http://secunia.com/advisories/48186 48844 http://secunia.com/advisories/48844 48879 http://secunia.com/advisories/48879 APPLE-SA-2012-05-09-1 http://lists.apple.com/archives/security-announce/2012/May/msg00001.html SUSE-SU-2012:0337 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00008.html SUSE-SU-2012:0338 http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00009.html SUSE-SU-2012:0502 http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00008.html SUSE-SU-2012:0515 http://lists.opensuse.org/opensuse-security-announce/2012-04/msg00014.html USN-1374-1 http://www.ubuntu.com/usn/USN-1374-1 blackberry-playbook-samba-code-execution(73361) https://exchange.xforce.ibmcloud.com/vulnerabilities/73361 http://btsc.webapps.blackberry.com/btsc/search.do?cmd=displayKC&docType=kc&externalId=KB29565 http://support.apple.com/kb/HT5281 https://bugzilla.redhat.com/show_bug.cgi?id=795509
Copyright	Copyright (c) 2012 E-Soft Inc. http://www.securityspace.com