Test ID:	1.3.6.1.4.1.25623.1.0.51002
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2003:161
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2003:161. Xinetd is a master server that is used to to accept service connection requests and start the appropriate servers. Because of a programming error, memory was allocated and never freed if a connection was refused for any reason. An attacker could exploit this flaw to crash the xinetd server, rendering all services it controls unavaliable. In addition, other flaws in xinetd could cause incorrect operation in certain unusual server configurations. All users of xinetd are advised to update to the packages listed in this erratum, which contain an upgrade to xinetd-2.3.11 and are not vulnerable to these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2003-161.html Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0211 Bugtraq: 20030418 Xinetd 2.3.10 Memory Leaks (Google Search) http://marc.info/?l=bugtraq&m=105068673220605&w=2 Conectiva Linux advisory: CLA-2003:782 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000782 http://www.mandriva.com/security/advisories?name=MDKSA-2003:056 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A657 http://www.redhat.com/support/errata/RHSA-2003-160.html
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.