Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2002:045: mm

Vulnerability Assessment Details

MDKSA-2002:045: mm
Vulnerability Assessment Summary
Check for the version of the mm package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2002:045 (mm).


Marcus Meissner and Sebastian Krahmer discovered a temporary file vulnerability
in the mm library which is used by the Apache webserver. This vulnerability can
be exploited to obtain root privilege if shell access to the apache user
(typically apache or nobody) is already obtained.


Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2002:045
Network Security Threat Level: High

Networks Security ID: 5352

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security
Cables, Connectors

Supermicro Micro ATX LGA-11255 DDR3 Server Motherboard w/ i5-2400 CPU No Shield
$99.0		 Supermicro Micro ATX LGA-11255 DDR3 Server Motherboard w/ i5-2400 CPU No Shield pictureHP Proliant Microserver w/ 250GB Seagate Drive
$78.72		 HP Proliant Microserver w/ 250GB Seagate Drive pictureLantronix (MPS1) Ethernet Micro Print Server Adapter with AC Power Supply MPS1-T
$99.99		 Lantronix (MPS1) Ethernet Micro Print Server Adapter with AC Power Supply MPS1-T picture724496-001 714768-101 HP 150W Microserver Power Supply
$92.0		 724496-001 714768-101 HP 150W Microserver Power Supply picture


Discussions

No Discussions have been posted on this vulnerability.