Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.71183
Category:Gentoo Local Security Checks
Title:Gentoo Security Advisory GLSA 201202-08 (ebuild stunnel)
Summary:The remote host is missing updates announced in;advisory GLSA 201202-08.
Description:Summary:
The remote host is missing updates announced in
advisory GLSA 201202-08.

Vulnerability Insight:
A vulnerability was found in stunnel, allowing remote attackers to
cause a Denial of Service and potentially arbitrary code execution.

Solution:
All stunnel users should upgrade to the latest version:

# emerge --sync
# emerge --ask --oneshot --verbose '>=net-misc/stunnel-4.44'

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2011-2940
BugTraq ID: 49254
http://www.securityfocus.com/bid/49254
http://www.openwall.com/lists/oss-security/2011/08/19/6
http://www.openwall.com/lists/oss-security/2011/08/19/18
http://www.stunnel.org/pipermail/stunnel-announce/2011-August/000059.html
http://www.osvdb.org/74600
http://securitytracker.com/id?1025959
http://secunia.com/advisories/45705
XForce ISS Database: stunnel-unspecifed-code-execution(69318)
https://exchange.xforce.ibmcloud.com/vulnerabilities/69318
CopyrightCopyright (c) 2012 E-Soft Inc. http://www.securityspace.com

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.