Test ID:	1.3.6.1.4.1.25623.1.0.50349
Category:	Fedora Local Security Checks
Title:	Fedora Core 1 FEDORA-2004-272 (mc)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to mc announced via advisory FEDORA-2004-272. Midnight Commander is a visual shell much like a file manager, only with many more features. It is a text mode application, but it also includes mouse support if you are running GPM. Midnight Commander's best features are its ability to FTP, view tar and zip files, and to poke into RPMs for specific files. Update Information: Security fix for http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=127973. CVE-2004-0494 extfs vfs vulnerability in mc This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 49f1c1f5234fc1d81dd3ffa821e04747 SRPMS/mc-4.6.0-17.fc1.src.rpm 78953790d5f583a77788ad4510cd1fe7 x86_64/mc-4.6.0-17.fc1.x86_64.rpm 1a5730f349b0505fac9cc78425402b8d x86_64/debug/mc-debuginfo-4.6.0-17.fc1.x86_64.rpm a731762be96fb7a2e00f4c8229f1d8b7 i386/mc-4.6.0-17.fc1.i386.rpm cbc9a3ba4897d0acc5a7589a8668476b i386/debug/mc-debuginfo-4.6.0-17.fc1.i386.rpm This update can also be installed with the Update Agent you can launch the Update Agent with the 'up2date' command. Solution: Apply the appropriate updates. http://www.fedoranews.org/updates/FEDORA-2004-272.shtml Risk factor : High CVSS Score: 7.5
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-0494 https://bugzilla.fedora.us/show_bug.cgi?id=1944 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854 http://www.redhat.com/support/errata/RHSA-2004-373.html XForce ISS Database: gnome-vfs-extfs-gain-access(16897) https://exchange.xforce.ibmcloud.com/vulnerabilities/16897
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.