Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Red Hat Local Security Checks >> RHSA-2005-583: dump


Vulnerability Assessment Details

RHSA-2005-583: dump

Vulnerability Assessment Summary
Check for the version of the dump packages

Detailed Explanation for this Vulnerability Assessment


Updated dump packages that address two security issues are now available
for Red Hat Enterprise Linux 2.1.

This update has been rated as having low security impact by the Red Hat
Security Response Team.

Dump examines files in a file system, acertains which ones need to be
backed up, and copies those files to a specified disk, tape, or other
storage medium.

A flaw was found with dump file locking. A malicious local user could
manipulate the file lock in such a way as to prevent dump from running.
The Common Vulnerabilities and Exposures project (cve.mitre.org) assigned
the name CVE-2002-1914 to this issue.

Users of dump should upgrade to these erratum packages, which contain a
patch to resolve this issue.




Solution : http://rhn.redhat.com/errata/RHSA-2005-583.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2005 Tenable Network Security

Cables, Connectors

Cisco catalyst 2960-C 16 Port PoE
$199.99
Cisco catalyst 2960-C 16 Port PoE pictureCisco WS-X4920-GB-RJ45= 20 Port 10 100 1000 RJ45 BHR
$135.0
Cisco WS-X4920-GB-RJ45= 20 Port 10 100 1000 RJ45 BHR pictureHP ProCurve 2810-48G // j9022A // HP ProCurve Switch 2810-48G
$299.99
HP ProCurve 2810-48G // j9022A // HP ProCurve Switch 2810-48G   pictureCisco CSS5-SSL-K9 Module 11500 11503 11506 Series
$79.98
Cisco CSS5-SSL-K9 Module 11500 11503 11506 Series picture


Discussions

No Discussions have been posted on this vulnerability.