ID de Prueba:	1.3.6.1.4.1.25623.1.0.831452
Categoría:	Mandrake Local Security Checks
Título:	Mandriva Update for rsyslog MDVSA-2011:134 (rsyslog)
Resumen:	The remote host is missing an update for the 'rsyslog'; package(s) announced via the referenced advisory.
Descripción:	Summary: The remote host is missing an update for the 'rsyslog' package(s) announced via the referenced advisory. Vulnerability Insight: A vulnerability was discovered and corrected in rsyslog: Stack-based buffer overflow in the parseLegacySyslogMsg function in tools/syslogd.c in rsyslogd in rsyslog 4.6.x before 4.6.8 and 5.2.0 through 5.8.4 might allow remote attackers to cause a denial of service (application exit) via a long TAG in a legacy syslog message (CVE-2011-3200). The updated packages have been patched to correct this issue. Affected Software/OS: rsyslog on Mandriva Linux 2010.1, Mandriva Linux 2010.1/X86_64 Solution: Please Install the Updated Packages. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3200 BugTraq ID: 49413 http://www.securityfocus.com/bid/49413 http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065837.html http://lists.fedoraproject.org/pipermail/package-announce/2011-September/065941.html http://www.mandriva.com/security/advisories?name=MDVSA-2011:134 http://www.redhat.com/support/errata/RHSA-2011-1247.html http://securitytracker.com/id?1026000 http://secunia.com/advisories/45922 http://secunia.com/advisories/46027 SuSE Security Announcement: openSUSE-SU-2011:1020 (Google Search) http://lists.opensuse.org/opensuse-updates/2011-09/msg00013.html
Copyright	Copyright (C) 2011 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.