Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2004:146: nfs-utils


Vulnerability Assessment Details

MDKSA-2004:146: nfs-utils

Vulnerability Assessment Summary
Check for the version of the nfs-utils package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2004:146 (nfs-utils).



SGI developers discovered a remote DoS (Denial of Service) condition in the NFS
statd server. rpc.statd did not ignore the 'SIGPIPE' signal which would cause
it to shutdown if a misconfigured or malicious peer terminated the TCP
connection prematurely.

The updated packages have been patched to prevent this problem.



Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:146
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security

Cables, Connectors

SMCD3GNV3 Docsis 3.0 Router Modem WiFi Telephony VOiP Xfinity comcast
$59.0
SMCD3GNV3  Docsis 3.0 Router Modem WiFi Telephony VOiP Xfinity comcast picture NEW Polycom VVX 201 2 Lines PoE SIP VoIP Business Phone 2200-40450-019 •AS IS•
$39.99
 NEW Polycom VVX 201 2 Lines PoE SIP VoIP Business Phone 2200-40450-019 •AS IS• pictureShoreTel PowerDsine PD-3001GC/AC VOIP IP Midspan Gigabit PoE Phone Injector
$19.99
ShoreTel PowerDsine PD-3001GC/AC VOIP IP Midspan Gigabit PoE Phone Injector pictureShoreTel IP210 VOIP LCD Display Black Desk Speaker Phone - Refurbished
$19.99
ShoreTel IP210 VOIP LCD Display Black Desk Speaker Phone - Refurbished picture


Discussions

No Discussions have been posted on this vulnerability.