Test ID:	1.3.6.1.4.1.25623.1.0.52705
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2005:371
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2005:371. Ncpfs is a file system that understands the Novell NetWare(TM) NCP protocol. A bug was found in the way ncpfs handled file permissions. ncpfs did not sufficiently check if the file owner matched the user attempting to access the file, potentially violating the file permissions. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2005-0013 to this issue. All users of ncpfs are advised to upgrade to this updated package, which contains backported fixes for this issue. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2005-371.html Risk factor : High CVSS Score: 7.2
Cross-Ref:	BugTraq ID: 12400 Common Vulnerability Exposure (CVE) ID: CVE-2005-0013 http://www.securityfocus.com/bid/12400 Debian Security Information: DSA-665 (Google Search) http://www.debian.org/security/2005/dsa-665 http://www.securityfocus.com/archive/1/433927/100/0/threaded http://www.gentoo.org/security/en/glsa/glsa-200501-44.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:028 http://www.osvdb.org/13297 http://www.redhat.com/support/errata/RHSA-2005-371.html http://securitytracker.com/id?1013019
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.