Test ID:	1.3.6.1.4.1.25623.1.0.51235
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2002:165
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2002:165. Updated PXE packages are now available for Red Hat Linux Advanced Server which fix a vulnerability that can crash the PXE server using certain DHCP packets. The PXE package contains the PXE (Preboot eXecution Environment) server and code needed for Linux to boot from a boot disk image on a Linux PXE server. It was found that the PXE server could be crashed using DHCP packets from some Voice Over IP (VOIP) phones. This bug could be used to cause a denial of service (DoS) attack on remote systems by using malicious packets. Users of PXE on Red Hat Linux Advanced Server are advised to upgrade to the new release which contains a version of PXE that is not vulnerable to this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2002-165.html Risk factor : Medium CVSS Score: 5.0
Cross-Ref:	BugTraq ID: 5596 Common Vulnerability Exposure (CVE) ID: CVE-2002-0835 http://www.securityfocus.com/bid/5596 Caldera Security Advisory: CSSA-2002-044.0 ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-044.0.txt HPdes Security Advisory: HPSBTL0209-066 http://online.securityfocus.com/advisories/4449 http://www.redhat.com/support/errata/RHSA-2002-162.html http://www.redhat.com/support/errata/RHSA-2002-165.html http://www.iss.net/security_center/static/10003.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.