Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2002:061: glibc Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the glibc package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2002:061 (glibc).
A heap buffer overflow exists in the XDR decoder in glibc version 2.2.5 and
earlier. XDR is a mechanism for encoding data structures for use with RPC, which
is derived from Sun's RPC implementation which is likewise vulnerable to a heap
overflow. Depending on the application, this vulnerability may be exploitable
and could lead to arbitrary code execution. Thanks to Solar Designer for the
patches used to correct this vulnerability.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2002:061
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.