Test ID:	1.3.6.1.4.1.25623.1.1.12.2006.367.1
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-367-1)
Summary:	The remote host is missing an update for the 'pike7.6' package(s) announced via the USN-367-1 advisory.
Description:	Summary: The remote host is missing an update for the 'pike7.6' package(s) announced via the USN-367-1 advisory. Vulnerability Insight: An SQL injection was discovered in Pike's PostgreSQL module. Applications using a PostgreSQL database and uncommon character encodings could be fooled into running arbitrary SQL commands, which could result in privilege escalation within the application, application data exposure, or denial of service. Please refer to [link moved to references] for more detailed information. Affected Software/OS: 'pike7.6' package(s) on Ubuntu 5.04. Solution: Please install the updated package(s). CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2006-4041 BugTraq ID: 19367 http://www.securityfocus.com/bid/19367 http://security.gentoo.org/glsa/glsa-200608-10.xml http://secunia.com/advisories/20494 http://secunia.com/advisories/21362 http://secunia.com/advisories/22481 http://www.ubuntu.com/usn/usn-367-1 http://www.vupen.com/english/advisories/2006/2209 XForce ISS Database: pike-sql-injection(26992) https://exchange.xforce.ibmcloud.com/vulnerabilities/26992
Copyright	Copyright (C) 2022 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.