English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 75096 CVE descriptions
and 39644 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.50999
Category:Red Hat Local Security Checks
Title:RedHat Security Advisory RHSA-2003:038
Summary:Redhat Security Advisory RHSA-2003:038
Description:
The remote host is missing updates announced in
advisory RHSA-2003:038.

Internet Message (IM) consists of a set of user interface commands and
backend Perl5 libraries to integrate email and the NetNews user interface.
These commands are designed to be used from both the Mew mail reader for
Emacs and the command line.

A vulnerability has been discovered by Tatsuya Kinoshita in the way two IM
utilities create temporary files. By anticipating the names used to
create files and directories stored in the /tmp directory, it may be
possible for a local attacker to corrupt or modify data as another user.

Users of IM are advised to install these packages which contain a
backported patch to correct these issues.

Solution:
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

http://rhn.redhat.com/errata/RHSA-2003-038.html
http://www.debian.org/security/2002/dsa-202

Risk factor : Medium
Cross-Ref: BugTraq ID: 6307
Common Vulnerability Exposure (CVE) ID: CVE-2002-1395
Debian Security Information: DSA-202 (Google Search)
http://www.debian.org/security/2002/dsa-202
http://www.redhat.com/support/errata/RHSA-2003-039.html
http://www.securityfocus.com/bid/6307
http://secunia.com/advisories/8166
http://secunia.com/advisories/8242
http://www.iss.net/security_center/static/10766.php
http://www.iss.net/security_center/static/10767.php
CopyrightCopyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 39644 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2014 E-Soft Inc. All rights reserved.