Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA349] DSA-349-1 nfs-utils


Vulnerability Assessment Details

[DSA349] DSA-349-1 nfs-utils

Vulnerability Assessment Summary
DSA-349-1 nfs-utils

Detailed Explanation for this Vulnerability Assessment

The logging code in nfs-utils contains an off-by-one buffer overrun
when adding a newline to the string being logged. This vulnerability
may permit a possible hacker to execute arbitrary code or cause a denial of
service condition by sending certain RPC requests.
For the stable distribution (woody) this problem has been fixed in
version 1:1.0-2woody1.
For the unstable distribution (sid) this problem has been fixed in
version 1:1.0.3-2.
We recommend that you update your nfs-utils package.


Solution : http://www.debian.org/security/2003/dsa-349
Network Security Threat Level: High

Networks Security ID: 8179

Vulnerability Assessment Copyright: This script is (C) 2006 Michel Arboi

Cables, Connectors

IBM Lenovo ThinkCentre E31 M92p M92 M82 MOTHERBOARD 4551-000430-10 for 2756 SFF
$62.99
IBM Lenovo ThinkCentre E31 M92p M92 M82 MOTHERBOARD 4551-000430-10 for 2756 SFF picture# IBM eServer xSeries 345 Dual Xeon 2.8GHz, 4GB, 8670-L1X
$99.99
# IBM eServer xSeries 345 Dual Xeon 2.8GHz, 4GB, 8670-L1X picturePower AC Adapter Charger For Lenovo S10e S12 S205 S205s U160 U165 IdeaPad 20V
$11.99
Power AC Adapter Charger For Lenovo S10e S12 S205 S205s U160 U165 IdeaPad 20V picturePower AC Adapter Charger For Lenovo S10e S12 S205 S205s U160 U165 IdeaPad 20V
$11.99
Power AC Adapter Charger For Lenovo S10e S12 S205 S205s U160 U165 IdeaPad 20V picture


Discussions

No Discussions have been posted on this vulnerability.