|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200603-07] flex: Potential insecure code generation Vulnerability Assessment Details
|
[GLSA-200603-07] flex: Potential insecure code generation |
||
flex: Potential insecure code generation Detailed Explanation for this Vulnerability Assessment The remote host is affected by the vulnerability described in GLSA-200603-07 (flex: Potential insecure code generation) Chris Moore discovered a buffer overflow in a special class of lexicographical scanners generated by flex. Only scanners generated by grammars which use either REJECT, or rules with a "variable trailing context" might be at risk. Impact A possible hacker could feed malicious input to an application making use of an affected scanner and trigger the buffer overflow, potentially resulting in the execution of arbitrary code. Workaround Avoid using vulnerable grammar in your flex scanners. References: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0459 Solution: All flex users should upgrade to the latest version: # emerge --sync # emerge --ask --oneshot --verbose ">=sys-devel/flex-2.5.33-r1" Network Security Threat Level: Medium Networks Security ID: Vulnerability Assessment Copyright: (C) 2006 Michel Arboi |
||
Cables, Connectors |
Cisco Nexus 48-Port 10G SFP+ Switch N9K-9396PX w/ 9K-M12PQ 12-Port 40G QSFP
$249.99
Silicom (PE210G2SPI9A-XR) 10Gb Dual Port SFP+ PCIe Ethernet Adapter Low Profile
$19.99
Cisco Catalyst 48-Port Manage Gigabit Switch w/ 2x 10G SFP+ WS-C2960S-48FPD-L
$79.99
SFP-10G-LR Compatible 10GBase-LR SFP+ LR Transceiver 10G 1310nm SMF up ot 10km
$45.00
Genuine Cisco SFP-10G-SR V03 10GBASE-SR SFP+ Transceiver Module 10-2415-03
$8.00
NEW Sealed Cisco SFP-10G-LR 10GBASE-LR SFP+ 1310nm 10km *US Shipping*
$18.00
Cisco SFP-10G-LR-S SFP+ 1310nm 10km DOM Transceiver Module 10-3107-01 - 1 Year
$41.59
CISCO SFP-GE-T Copper Transceiver Module GENUINE
$8.05
LOT OF 20 Genuine Cisco SFP-10G-SR V03 10GBASE-SR SFP+ Transceiver Module
$89.00
Cisco Meraki MA-SFP-10GB-SR 10G SFP+ SR 850nm 300m LC MMF
$29.99
|
||
No Discussions have been posted on this vulnerability. |