Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Mandrake Local Security Checks >> MDKSA-2006:100: gdm


Vulnerability Assessment Details

MDKSA-2006:100: gdm

Vulnerability Assessment Summary
Check for the version of the gdm package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory MDKSA-2006:100 (gdm).



A vulnerability in gdm could permit a user to activate the gdm setup

program if the administrator configured a gdm theme that provided a

user list. The user could do so by choosing the setup option from

the menu, clicking the user list, then entering his own password

instead of root's.



The updated packages have been patched to correct this issue.



Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:100
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors

DELL POWEREDGE M820 FOUR E5-4627V2 3.3GHZ 384GB 600GB SSD H710P
$9189.0
DELL POWEREDGE M820 FOUR E5-4627V2 3.3GHZ 384GB 600GB SSD H710P pictureDELL POWEREDGE M640 SERVER BLADE GOLD 6142 256GB 600GB 15K 12G
$7629.0
DELL POWEREDGE M640 SERVER BLADE GOLD 6142 256GB 600GB 15K 12G pictureDELL POWEREDGE M620 BLADE TWO E5-2620V2 2.10GHZ 32GB 2 X 1.6TB SSD H710P
$2699.0
DELL POWEREDGE M620 BLADE TWO E5-2620V2 2.10GHZ 32GB 2 X 1.6TB SSD H710P pictureDELL POWEREDGE M620 BLADE TWO E5-2603 1.80GHZ 48GB 2 X 300GB 10K SAS H710P
$1289.0
DELL POWEREDGE M620 BLADE TWO E5-2603 1.80GHZ 48GB 2 X 300GB 10K SAS H710P picture


Discussions

No Discussions have been posted on this vulnerability.