Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.52859
Kategorie:Turbolinux Local Security Tests
Titel:Turbolinux TLSA-2005-43 (xloadimage)
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote host is missing an update to xloadimage
announced via advisory TLSA-2005-43.

The xloadimage utility displays images in an X Window System window,
loads images into the root window, or writes images into a file.

Vulnerability in xloadimage can allow attackers to execute arbitrary
commands by placing shell metacharacters in filenames.

This vulnerability may allow attackers to execute arbitrary code.

Solution: Please use the turbopkg (zabom) tool to apply the update.
https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2005-43

Risk factor : High

CVSS Score:
7.5

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2001-0775
BugTraq ID: 3006
http://www.securityfocus.com/bid/3006
Bugtraq: 20010710 xloadimage remote exploit - tstot.c (Google Search)
http://www.securityfocus.com/archive/1/195823
Debian Security Information: DSA-069 (Google Search)
http://www.debian.org/security/2001/dsa-069
Debian Security Information: DSA-695 (Google Search)
http://www.debian.org/security/2005/dsa-695
http://www.gentoo.org/security/en/glsa/glsa-200503-05.xml
http://www.redhat.com/support/errata/RHSA-2001-088.html
SuSE Security Announcement: SA:2001:024 (Google Search)
http://www.novell.com/linux/security/advisories/2001_024_xli_txt.html
http://www.iss.net/security_center/static/6821.php
Common Vulnerability Exposure (CVE) ID: CVE-2005-0638
BugTraq ID: 12712
http://www.securityfocus.com/bid/12712
http://www.securityfocus.com/archive/1/433935/30/5010/threaded
http://security.gentoo.org/glsa/glsa-200503-05.xml
http://www.osvdb.org/14365
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10898
http://www.redhat.com/support/errata/RHSA-2005-332.html
http://secunia.com/advisories/14459
http://secunia.com/advisories/14462
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.