Test ID:	1.3.6.1.4.1.25623.1.0.63685
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-1755-1)
Summary:	The remote host is missing an update for the Debian 'systemtap' package(s) announced via the DSA-1755-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'systemtap' package(s) announced via the DSA-1755-1 advisory. Vulnerability Insight: Erik Sjoelund discovered that a race condition in the stap tool shipped by Systemtap, an instrumentation system for Linux 2.6, allows local privilege escalation for members of the stapusr group. The old stable distribution (etch) isn't affected. For the stable distribution (lenny), this problem has been fixed in version 0.0.20080705-1+lenny1. For the unstable distribution (sid), this problem has been fixed in version 0.0.20090314-2. We recommend that you upgrade your systemtap package. Affected Software/OS: 'systemtap' package(s) on Debian 5. Solution: Please install the updated package(s). CVSS Score: 6.3 CVSS Vector: AV:L/AC:M/Au:N/C:N/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2009-0784 34441 http://secunia.com/advisories/34441 34479 http://secunia.com/advisories/34479 34548 http://secunia.com/advisories/34548 ADV-2009-0907 http://www.vupen.com/english/advisories/2009/0907 DSA-1755 http://www.debian.org/security/2009/dsa-1755 RHSA-2009:0373 http://www.redhat.com/support/errata/RHSA-2009-0373.html http://support.avaya.com/elmodocs2/security/ASA-2009-110.htm oval:org.mitre.oval:def:11613 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11613
Copyright	Copyright (C) 2009 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.