Test ID:	1.3.6.1.4.1.25623.1.0.61728
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDVSA-2008:221 (aterm)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to aterm announced via advisory MDVSA-2008:221. A vulnerability in rxvt allowed it to open a terminal on :0 if the environment variable was not set, which could be used by a local user to hijack X11 connections (CVE-2008-1142). This issue also affects aterm. The updated packages have been patched to correct this issue. Affected: Corporate 3.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2008:221 Risk factor : Medium CVSS Score: 3.7
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2008-1142 BugTraq ID: 28512 http://www.securityfocus.com/bid/28512 http://security.gentoo.org/glsa/glsa-200805-03.xml http://www.mandriva.com/security/advisories?name=MDVSA-2008:161 http://www.mandriva.com/security/advisories?name=MDVSA-2008:221 http://article.gmane.org/gmane.comp.security.oss.general/122 http://secunia.com/advisories/29576 http://secunia.com/advisories/30224 http://secunia.com/advisories/30225 http://secunia.com/advisories/30226 http://secunia.com/advisories/30227 http://secunia.com/advisories/30229 http://secunia.com/advisories/31687 SuSE Security Announcement: SUSE-SR:2008:017 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html
Copyright	Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.