Family: Red Hat Local Security Checks --> Category: infos
RHSA-2002-121: arpwatch Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the arpwatch packages
Detailed Explanation for this Vulnerability Test
Updated tcpdump, libpcap, and arpwatch packages are available. These
updates close a buffer overflow when handling NFS packets.
tcpdump is a command-line tool for monitoring network traffic. Versions of
tcpdump up to and including 3.6.2 have a buffer overflow that can be
triggered when tracing the network by a bad NFS packet.
We are not yet aware if this issue is fully exploitable
however, users of
tcpdump are advised to upgrade to these errata packages which contain a
patch for this issue.
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2002-0380 to this issue. This issue was found by
David Woodhouse of Red Hat.
Solution : http://rhn.redhat.com/errata/RHSA-2002-121.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.