|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2003-087: file Vulnerability Assessment Details
|
RHSA-2003-087: file |
||
Check for the version of the file packages Detailed Explanation for this Vulnerability Assessment Updated file packages are available to close a buffer overflow vulnerability. [Updated 12 March 2003] Added packages for Red Hat Enterprise Linux ES and Red Hat Enterprise Linux WS The file command is used to identify a particular file according to the type of data contained by the file. The file utility before version 3.41 contains a buffer overflow vulnerability in the ELF parsing routines. This vulnerability may permit a possible hacker to create a carefully crafted binary which can cause arbitrary code to run if a victim runs the file command against that binary. On some distributions it may also be possible to trigger this file command vulnerability by encouraging the victim to use the less command on an exploited file name so that it will be processed by the lesspipe.sh script. All users are advised to update to these erratum packages which contain a backported patch to correct this vulnerability. Red Hat would like to thank iDefense for disclosing this issue and zen-parse for discussion of some of the implications. Solution : http://rhn.redhat.com/errata/RHSA-2003-087.html Network Security Threat Level: High Networks Security ID: Vulnerability Assessment Copyright: This script is Copyright (C) 2004 Tenable Network Security |
||
Cables, Connectors |
Cisco Nexus 48-Port 10G SFP+ Switch N9K-9396PX w/ 9K-M12PQ 12-Port 40G QSFP
$249.99
Lot of 10pcs Brocade 57-1000012-01 8Gbps SWL 850nm SFP+ Optical Transceivers
$19.00
Cisco Lot of 5x Original Cisco SFP-10G-SR Transceiver Module 10GB 850nm MMF SFP+
$23.99
Cisco Catalyst WS-C3750X-48PF-L
$59.99
Genuine Cisco SFP-10G-SR V03 10GBASE-SR SFP+ Transceiver Module 10-2415-03
$8.00
NEW Sealed Cisco SFP-10G-LR 10GBASE-LR SFP+ 1310nm 10km *US Shipping*
$18.00
Cisco SFP-10G-LR-S SFP+ 1310nm 10km DOM Transceiver Module 10-3107-01 - 1 Year
$41.59
CISCO SFP-GE-T Copper Transceiver Module GENUINE
$8.05
LOT OF 20 Genuine Cisco SFP-10G-SR V03 10GBASE-SR SFP+ Transceiver Module
$89.00
Cisco Meraki MA-SFP-10GB-SR 10G SFP+ SR 850nm 300m LC MMF
$29.99
|
||
No Discussions have been posted on this vulnerability. |