Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.52957 |
Category: | Turbolinux Local Security Tests |
Title: | Turbolinux TLSA-2003-50 (pam_smb) |
Summary: | NOSUMMARY |
Description: | Description: The remote host is missing an update to pam_smb announced via advisory TLSA-2003-50. The pam_smb is a package for a PAM (Pluggable Authentication Modules) module that allows Linux/Unix user authentication sing an external SMB server. The remote buffer overflow in the pam_smb module that an attacker can exploit the pam_smb configured to authenticate a remotely accessible service. However, the pam_smb module is not enabled by default. This vulnerability may allow a remote attacker to execute arbitrary code. Solution: Please use the turbopkg (zabom) tool to apply the update. http://www.securityspace.com/smysecure/catid.html?in=TLSA-2003-50 Risk factor : High CVSS Score: 7.5 |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2003-0686 Bugtraq: 20030901 GLSA: pam_smb (200309-01) (Google Search) http://marc.info/?l=bugtraq&m=106252769930090&w=2 CERT/CC vulnerability note: VU#680260 http://www.kb.cert.org/vuls/id/680260 Conectiva Linux advisory: CLA-2003:734 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000734 Debian Security Information: DSA-374 (Google Search) http://www.debian.org/security/2003/dsa-374 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A469 http://www.redhat.com/support/errata/RHSA-2003-261.html http://www.redhat.com/support/errata/RHSA-2003-262.html http://secunia.com/advisories/9611 SuSE Security Announcement: SuSE-SA:2003:036 (Google Search) TurboLinux Advisory: TLSA-2003-50 http://www.turbolinux.com/security/TLSA-2003-50.txt |
Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |