Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.11800
Kategorie:Gain root remotely
Titel:Linux nfs-utils xlog() off-by-one overflow
Zusammenfassung:NOSUMMARY
Beschreibung:Description:

The remote rpc.mountd daemon is vulnerable to an off-by-one overflow
which may be exploited by an attacker to gain a root shell on this
host.

Solution : Upgrade to the latest version of nfs-utils
Risk factor : High

Querverweis: BugTraq ID: 8179
Common Vulnerability Exposure (CVE) ID: CVE-2003-0252
http://www.securityfocus.com/bid/8179
Bugtraq: 20030714 Linux nfs-utils xlog() off-by-one bug (Google Search)
http://marc.info/?l=bugtraq&m=105820223707191&w=2
Bugtraq: 20030715 [slackware-security] nfs-utils packages replaced (SSA:2003-195-01b) (Google Search)
http://marc.info/?l=bugtraq&m=105830921519513&w=2
Bugtraq: 20030716 Immunix Secured OS 7+ nfs-utils update -- bugtraq (Google Search)
http://marc.info/?l=bugtraq&m=105839032403325&w=2
CERT/CC vulnerability note: VU#258564
http://www.kb.cert.org/vuls/id/258564
Debian Security Information: DSA-349 (Google Search)
http://www.debian.org/security/2003/dsa-349
http://www.mandriva.com/security/advisories?name=MDKSA-2003:076
http://isec.pl/vulnerabilities/isec-0010-linux-nfs-utils.txt
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A443
http://www.redhat.com/support/errata/RHSA-2003-206.html
http://www.redhat.com/support/errata/RHSA-2003-207.html
SCO Security Bulletin: CSSA-2003-037.0
http://securitytracker.com/id?1007187
http://secunia.com/advisories/9259
http://sunsolve.sun.com/search/document.do?assetkey=1-77-1001262.1-1
SuSE Security Announcement: SuSE-SA:2003:031 (Google Search)
http://www.novell.com/linux/security/advisories/2003_031_nfs_utils.html
TurboLinux Advisory: TLSA-2003-44
http://www.turbolinux.com/security/TLSA-2003-44.txt
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0023.html
http://archives.neohapsis.com/archives/vulnwatch/2003-q3/0024.html
XForce ISS Database: nfs-utils-offbyone-bo(12600)
https://exchange.xforce.ibmcloud.com/vulnerabilities/12600
CopyrightThis script is Copyright (C) 2003 Tenable Network Security

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2024 E-Soft Inc. Alle Rechte vorbehalten.