Test ID:	1.3.6.1.4.1.25623.1.0.55567
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2005:770
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2005:770. The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications that are modeled after applications from the shadow password suite are included in the package. Several denial of service bugs were discovered in libuser. Under certain conditions it is possible for an application linked against libuser to crash or operate irregularly. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-2392 to these issues. All users of libuser are advised to upgrade to these updated packages, which contain a backported fix and are not vulnerable to these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-770.html Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	BugTraq ID: 10368 Common Vulnerability Exposure (CVE) ID: CVE-2004-2392 http://www.securityfocus.com/bid/10368 http://www.mandriva.com/security/advisories?name=MDKSA-2004:044 http://www.redhat.com/support/errata/RHSA-2005-770.html http://securitytracker.com/id?1010187 XForce ISS Database: libuser-dos(16188) https://exchange.xforce.ibmcloud.com/vulnerabilities/16188
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.