Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2005:188: graphviz


Vulnerability Assessment Details

MDKSA-2005:188: graphviz

Vulnerability Assessment Summary
Check for the version of the graphviz package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2005:188 (graphviz).



Javier Fern ndez-Sanguino Pe a discovered insecure temporary file creation in
graphviz, a rich set of graph drawing tools, that can be exploited to overwrite
arbitrary files by a local attacker.

The updated packages have been patched to address this issue.



Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:188
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors

Dell Poweredge R610 Server Xeon 4C 2.93GHZ X5647 2 x 146GB 15K PERC6I W/RAILS
$74.0
Dell Poweredge R610 Server Xeon 4C 2.93GHZ X5647 2 x 146GB 15K PERC6I W/RAILS pictureDell R730xd 8-Core Server 2x E5-2623 v3 3.0GHz 32GB-8 12x 4TB 3.5in H730 RPS
$3766.82
Dell R730xd 8-Core Server 2x E5-2623 v3 3.0GHz 32GB-8 12x 4TB 3.5in H730 RPS pictureDell PowerEdge R640 Warranty Thru 11-5-23. 2xSilver 4114 20 Cores, H740P, 256GB
$6450.0
Dell PowerEdge R640 Warranty Thru 11-5-23. 2xSilver 4114 20 Cores, H740P, 256GB pictureDell Poweredge R610 Server Xeon 4C 2.66GHZ X5650 12GB 2x146GB 15K PERC6I W/RAILS
$75.0
Dell Poweredge R610 Server Xeon 4C 2.66GHZ X5650 12GB 2x146GB 15K PERC6I W/RAILS picture


Discussions

No Discussions have been posted on this vulnerability.