Family: Fedora Local Security Checks --> Category: infos
Fedora Core 3 2005-435: ncpfs Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ncpfs package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory FEDORA-2005-435 (ncpfs).
Ncpfs is a filesystem which understands the Novell NetWare(TM) NCP
protocol. Functionally, NCP is used for NetWare the way NFS is used
in the TCP/IP world. For a Linux system to mount a NetWare
filesystem, it needs a special mount program. The ncpfs package
contains such a mount program plus other tools for configuring and
using the ncpfs filesystem.
Install the ncpfs package if you need to use the ncpfs filesystem
to use Novell NetWare files or services.
* Fri Jun 17 2005 Jiri Ryska 2.2.4-4.FC3.1
- fixed getuid security bug CVE-2005-0014
- fixed security bug CVE-2004-1079
* Mon Apr 11 2005 Jiri Ryska 2.2.4-4.FC3
- fixed getuid security bug CVE-2005-0013
Solution : http://www.fedoranews.org/blog/index.php?p=843
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.