Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.61888 |
Category: | Fedora Local Security Checks |
Title: | Fedora Core 8 FEDORA-2008-9712 (roundup) |
Summary: | NOSUMMARY |
Description: | Description: The remote host is missing an update to roundup announced via advisory FEDORA-2008-9712. Roundup is a simple and flexible issue-tracking system with command line, web and email interfaces. It is based on the winning design from Ka-Ping Yee in the Software Carpentry Track design competition. ChangeLog: * Fri Oct 3 2008 Paul P. Komkoff Jr - 1.4.6-1 - new upstream version References: [ 1 ] Bug #450246 - CVE-2008-1475 roundup: xmlrpc-server not checking property permissions https://bugzilla.redhat.com/show_bug.cgi?id=450246 Solution: Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update roundup' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2008-9712 Risk factor : High CVSS Score: 6.4 |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2008-1475 BugTraq ID: 28238 http://www.securityfocus.com/bid/28238 https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00264.html https://www.redhat.com/archives/fedora-package-announce/2008-March/msg00375.html https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00452.html https://www.redhat.com/archives/fedora-package-announce/2008-November/msg00478.html http://security.gentoo.org/glsa/glsa-200805-21.xml https://bugzilla.redhat.com/show_bug.cgi?id=436546 http://secunia.com/advisories/29336 http://secunia.com/advisories/29375 http://secunia.com/advisories/30274 http://secunia.com/advisories/32805 http://www.vupen.com/english/advisories/2008/0891 XForce ISS Database: roundup-xmlrpc-security-bypass(41240) https://exchange.xforce.ibmcloud.com/vulnerabilities/41240 |
Copyright | Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |