SecurityLex.Org
  Home My IP SecCon Glossary Vulnerability Tests Sans/FBI Top 20 Top 10 Ipfilter Recent Vulnerabilities Today's news Web Host Check 

VulnTests
SecureScout Testcase
eEye Retina RTH
Nessus Plugin ID
nCircle Sans CVE's
Dragonsoft Vuln ID
CVE Entries
Search CVSS vectors 
CVSS Base score between    and
Access Vector Confidentiality Impact
Access Complexity Integrity Impact
Authentification Availability Impact
Impact Bias

Your search for "21132" returned:
Nessus Plugin ID: 21132Name: MDKSA-2006:058: sendmail
CVE References: CVE-2006-0058 (cve.mitre.org, nvd.nist.gov
SANS/FBI TOP20 Reference:
Group/Family: Mandriva Local Security Checks
Risk: High
Description: Synopsis :

The remote host is missing the patch for the advisory MDKSA-2006:058 (sendmail).

Description :

A race condition was reported in sendmail in how it handles
asynchronous signals. This could allow a remote attacker to be able
to execute arbitrary code with the privileges of the user running
sendmail.
The updated packages have been patched to correct this problem via a
patch provided by the Sendmail Consortium via CERT.

See also :

http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:058

Solution :

Apply the newest security patches from Mandriva.

/ CVSS Base Score : 7.6
(CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C)
Created: 2007-09-08 00:56:37Last Changed: 2009-05-08 04:02:33
 
 The Complete Lexicon to Security