ID de Prueba:	1.3.6.1.4.1.25623.1.0.52948
Categoría:	Turbolinux Local Security Tests
Título:	Turbolinux TLSA-2003-41 (kernel)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to kernel announced via advisory TLSA-2003-41. - The ioperm system call in Linux kernel does not properly restrict privileges, which allows local users to gain read or write access to certain I/O ports. - Vulnerability in the TTY layer of the Linux kernel allows attackers to cause a denial of service. - The TCP/IP fragment reassembly handling in the Linux kernel allows remote attackers to cause a denial of service (CPU consumption) via certain packets that cause a large number of hash table collisions Local users may be able to gain read or write access to certain I/O ports. Attackers may be able to cause a denial of service . Solution: Please use the turbopkg (zabom) tool to apply the update. https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2003-41 Risk factor : Critical CVSS Score: 10.0
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0248 Debian Security Information: DSA-311 (Google Search) http://www.debian.org/security/2003/dsa-311 Debian Security Information: DSA-312 (Google Search) http://www.debian.org/security/2003/dsa-312 Debian Security Information: DSA-332 (Google Search) http://www.debian.org/security/2003/dsa-332 Debian Security Information: DSA-336 (Google Search) http://www.debian.org/security/2003/dsa-336 Debian Security Information: DSA-442 (Google Search) http://www.debian.org/security/2004/dsa-442 http://www.mandriva.com/security/advisories?name=MDKSA-2003:066 http://www.mandriva.com/security/advisories?name=MDKSA-2003:074 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A292 http://www.redhat.com/support/errata/RHSA-2003-187.html http://www.redhat.com/support/errata/RHSA-2003-195.html TurboLinux Advisory: TLSA-2003-41 http://www.turbolinux.com/security/TLSA-2003-41.txt Common Vulnerability Exposure (CVE) ID: CVE-2003-0246 En Garde Linux Advisory: ESA-20030515-017 http://marc.info/?l=bugtraq&m=105301461726555&w=2 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A278 http://www.redhat.com/support/errata/RHSA-2003-147.html http://www.redhat.com/support/errata/RHSA-2003-172.html http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0076.html Common Vulnerability Exposure (CVE) ID: CVE-2003-0247 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A284 http://www.redhat.com/support/errata/RHSA-2003-198.html Common Vulnerability Exposure (CVE) ID: CVE-2003-0364 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A295 Common Vulnerability Exposure (CVE) ID: CVE-2003-0244 BugTraq ID: 7601 http://www.securityfocus.com/bid/7601 Bugtraq: 20030618 [slackware-security] 2.4.21 kernels available (SSA:2003-168-01) (Google Search) http://marc.info/?l=bugtraq&m=105595901923063&w=2 http://marc.info/?l=linux-kernel&m=104956079213417 http://www.enyo.de/fw/security/notes/linux-dst-cache-dos.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A261 http://www.redhat.com/support/errata/RHSA-2003-145.html http://www.secunia.com/advisories/8786/ http://archives.neohapsis.com/archives/vulnwatch/2003-q2/0073.html XForce ISS Database: data-algorithmic-complexity-dos(15382) https://exchange.xforce.ibmcloud.com/vulnerabilities/15382
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.