Test ID:	1.3.6.1.4.1.25623.1.0.50679
Category:	Mandrake Local Security Checks
Title:	Mandrake Security Advisory MDKSA-2003:015 (slocate)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to slocate announced via advisory MDKSA-2003:015. A buffer overflow vulnerability was discovered in slocate by team USG. The overflow appears when slocate is used with the -c and -r parameters, using a 1024 (or 10240) byte string. This has been corrected in slocate version 2.7. Affected versions: 8.0, 8.1, 8.2, 9.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2003:015 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0056 http://www.usg.org.uk/advisories/2003.001.txt Risk factor : High CVSS Score: 7.2
Cross-Ref:	BugTraq ID: 6676 Common Vulnerability Exposure (CVE) ID: CVE-2003-0056 Bugtraq: 20030124 [USG- SA- 2003.001] USG Security Advisory (slocate) (Google Search) http://marc.info/?l=bugtraq&m=104342864418213&w=2 Bugtraq: 20030125 Re: [USG- SA- 2003.001] USG Security Advisory (slocate) (Google Search) http://marc.info/?l=bugtraq&m=104348607205691&w=2 Bugtraq: 20030202 GLSA: slocate (Google Search) http://marc.info/?l=bugtraq&m=104428624705363&w=2 Caldera Security Advisory: CSSA-2003-009.0 ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-009.0.txt Conectiva Linux advisory: CLA-2003:643 http://www.net-security.org/advisory.php?id=2010 Debian Security Information: DSA-252 (Google Search) http://www.debian.org/security/2003/dsa-252 http://www.mandriva.com/security/advisories?name=MDKSA-2003:015 http://www.usg.org.uk/advisories/2003.001.txt https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11369 RedHat Security Advisories: RHSA-2004:041 http://rhn.redhat.com/errata/RHSA-2004-041.html http://secunia.com/advisories/10720 http://secunia.com/advisories/7947 http://secunia.com/advisories/7982 http://secunia.com/advisories/8007 http://secunia.com/advisories/8118/ http://secunia.com/advisories/8236 http://secunia.com/advisories/8749 SGI Security Advisory: 20040202-01-U ftp://patches.sgi.com/support/free/security/advisories/20040202-01-U.asc
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.