Fedora 11 : maniadrive-1.2-18.fc11 / php-5.2.13-1.fc11 (2010-4114)

This script is Copyright (C) 2010-2016 Tenable Network Security, Inc.


Synopsis :

The remote Fedora host is missing one or more security updates.

Description :

This release focuses on improving the stability of the PHP 5.2.x
branch with over 40 bug fixes, some of which are security related,
including: * Fixed safe_mode validation inside tempnam() when the
directory path does not does not end with a / * Fixed a possible
open_basedir/safe_mode bypass in the session extension * Improved LCG
entropy Full upstream changelog:
http://www.php.net/ChangeLog-5.php#5.2.13

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.

See also :

http://www.php.net/ChangeLog-5.php#5.2.13
https://bugzilla.redhat.com/show_bug.cgi?id=569788
http://www.nessus.org/u?370b2233
http://www.nessus.org/u?e0274dfa

Solution :

Update the affected maniadrive and / or php packages.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
CVSS Temporal Score : 6.5
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : true

Family: Fedora Local Security Checks

Nessus Plugin ID: 47339 (fedora_2010-4114.nasl)

Bugtraq ID: 38182
38430
38431

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now