|
Family: Red Hat Local Security Checks --> Category: infos
RHSA-2005-371: ipxutils Vulnerability Scan
Vulnerability Scan Summary Check for the version of the ipxutils packages
Detailed Explanation for this Vulnerability Test
An updated ncpfs package is now available.
This update has been rated as having moderate security impact by the Red
Hat Security Response Team.
Ncpfs is a file system that understands the Novell NetWare(TM) NCP
protocol.
A bug was found in the way ncpfs handled file permissions. ncpfs did not
sufficiently check if the file owner matched the user attempting to access
the file, potentially violating the file permissions. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CVE-2005-0013 to this issue.
All users of ncpfs are advised to upgrade to this updated package, which
contains backported fixes for this issue.
Solution : http://rhn.redhat.com/errata/RHSA-2005-371.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|