Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> SuSE Local Security Checks >> SUSE-SA:2006:007: binutils,kdelibs3,kdegraphics3,koffice,dia,lyx


Vulnerability Assessment Details

SUSE-SA:2006:007: binutils,kdelibs3,kdegraphics3,koffice,dia,lyx

Vulnerability Assessment Summary
Check for the version of the binutils,kdelibs3,kdegraphics3,koffice,dia,lyx package

Detailed Explanation for this Vulnerability Assessment

The remote host is missing the patch for the advisory SUSE-SA:2006:007 (binutils,kdelibs3,kdegraphics3,koffice,dia,lyx).


A SUSE specific patch to the GNU linker 'ld' removes redundant RPATH
and RUNPATH components when linking binaries.

Due to a bug in this routine ld occasionally left empty RPATH
components. When running a binary with empty RPATH components the
dynamic linker tries to load shared libraries from the current
directory.

By tricking users into running an affected application in a
directory that contains a specially crafted shared library an
attacker could execute arbitrary code with the user id of the
victim.


Solution : http://www.suse.de/security/advisories/2006_07_binutils.html
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2006 Tenable Network Security

Cables, Connectors


Dell J7TNV HBA330 12GBPS Adapter PCIe Raid Controller Card Low Profile w60 picture

Dell J7TNV HBA330 12GBPS Adapter PCIe Raid Controller Card Low Profile w60

$19.99



Dell 5CT6D / 70K80 PERC H710 6GB/s RAID Controller w/ Battery picture

Dell 5CT6D / 70K80 PERC H710 6GB/s RAID Controller w/ Battery

$12.99



Dell MegaRaid SAS 9440-8i 12GB/s Tri-Mode NVMe/SATA/SAS Raid Controller 0YW3J6 picture

Dell MegaRaid SAS 9440-8i 12GB/s Tri-Mode NVMe/SATA/SAS Raid Controller 0YW3J6

$59.00



Dell KMCCD PERC H730 mini Mono 1GB RAID Controller 0KMCCD with Battery picture

Dell KMCCD PERC H730 mini Mono 1GB RAID Controller 0KMCCD with Battery

$19.59



Promise Pegasus2 R4 12TB (4x3TB SATA drives) 4-Bay RAID Enclosure picture

Promise Pegasus2 R4 12TB (4x3TB SATA drives) 4-Bay RAID Enclosure

$299.99



Inspur LSI SAS3008-i 8-Port 12Gb PCIe 3.0 SATA/SAS HBA IT Mode FreeNAS unRAID picture

Inspur LSI SAS3008-i 8-Port 12Gb PCIe 3.0 SATA/SAS HBA IT Mode FreeNAS unRAID

$14.99



Dell PERC H740P Mini 12Gb 8Gb SAS RAID Controller w/Battery - 5FMY4 - 05FMY4 picture

Dell PERC H740P Mini 12Gb 8Gb SAS RAID Controller w/Battery - 5FMY4 - 05FMY4

$49.95



Adaptec AEC-82885T 36-Port SAS-3 12Gbps Expander firmware B059 picture

Adaptec AEC-82885T 36-Port SAS-3 12Gbps Expander firmware B059

$59.34



Dell Perc H330 GDJ3J UCSB-900 12Gbps SAS Mini Mono Raid Card picture

Dell Perc H330 GDJ3J UCSB-900 12Gbps SAS Mini Mono Raid Card

$9.76



Dell PERC H730 1GB Mini Mono RAID Controller Card w/Battery Dell P/N: 0KMCCD picture

Dell PERC H730 1GB Mini Mono RAID Controller Card w/Battery Dell P/N: 0KMCCD

$21.99



Discussions

No Discussions have been posted on this vulnerability.