Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Red Hat Local Security Checks --> Category: infos

RHSA-2002-121: arpwatch Vulnerability Scan

Vulnerability Scan Summary
Check for the version of the arpwatch packages

Detailed Explanation for this Vulnerability Test

Updated tcpdump, libpcap, and arpwatch packages are available. These
updates close a buffer overflow when handling NFS packets.

tcpdump is a command-line tool for monitoring network traffic. Versions of
tcpdump up to and including 3.6.2 have a buffer overflow that can be
triggered when tracing the network by a bad NFS packet.

We are not yet aware if this issue is fully exploitable
however, users of
tcpdump are advised to upgrade to these errata packages which contain a
patch for this issue.

The Common Vulnerabilities and Exposures project ( has
assigned the name CVE-2002-0380 to this issue. This issue was found by
David Woodhouse of Red Hat.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.