Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2004:009: glibc


Vulnerability Assessment Details

MDKSA-2004:009: glibc

Vulnerability Assessment Summary
Check for the version of the glibc package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2004:009 (glibc).


A read buffer overflow vulnerability exists in the resolver code in versions of
glibc up to and including 2.2.5. The vulnerability is triggered by DNS packets
larger than 1024 bytes, which can cause an application to crash.
The updated packages have a patch applied to correct the problem.


Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:009
Network Security Threat Level: High

Networks Security ID: 6116

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

Dell PowerEdge R510 2x X5550 2.66GHz Quad Core 128GB 12x 3TB 7.2K SAS PERC H700
$2835.0
Dell PowerEdge R510 2x X5550 2.66GHz Quad Core 128GB 12x 3TB 7.2K SAS PERC H700 pictureDell PowerEdge R710 2x L5640 2.26GHz 6 Core 48GB 8x 256GB SATA SSD PERC 6/i
$1135.0
Dell PowerEdge R710 2x L5640 2.26GHz 6 Core 48GB 8x 256GB SATA SSD PERC 6/i pictureApple 2012 Mac Pro 3.2GHz Quad-Core Xeon 1TB 6GB MD770LL/A + C Grade + Warranty
$774.99
Apple 2012 Mac Pro 3.2GHz Quad-Core Xeon 1TB 6GB MD770LL/A + C Grade + Warranty pictureDELL POWEREDGE R730 8 BAY TWO E5-2690V3 2.6GHZ 256GB 5 X 600GB 15K 12G H730
$10939.0
DELL POWEREDGE R730 8 BAY TWO E5-2690V3 2.6GHZ 256GB 5 X 600GB 15K 12G H730 picture


Discussions

No Discussions have been posted on this vulnerability.