 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.51563 |
| Category: | Conectiva Local Security Checks |
| Title: | Conectiva Security Advisory CLA-2002:556 |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing updates announced in advisory CLA-2002:556. OpenLDAP[1] is an LDAPv2 and LDAPv3 server available for several platforms. The SuSE Security Team reviewed critical parts of the OpenLDAP code and found several remote and local vulnerabilities, all fixed in this update. The vulnerabilities consists mainly in buffer overflows in both the OpenLDAP server and in the libraries provided with the OpenLDAP package. Some of these vulnerabilities can be exploited by attackers remotely or locally to compromise the OpenLDAP server or applications linked against the vulnerable libraries. Conectiva Linux 6.0 users should atent to the fact that the package openldap2 here updated was released as experimental in that distribution. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://www.openldap.org http://www.suse.de/de/security/2002_047_openldap2.html http://www.securityspace.com/smysecure/catid.html?in=CLA-2002:556 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002002 Risk factor : High |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |