Test ID:	1.3.6.1.4.1.25623.1.0.840408
Category:	Ubuntu Local Security Checks
Title:	Ubuntu: Security Advisory (USN-922-1)
Summary:	The remote host is missing an update for the 'libnss-db' package(s) announced via the USN-922-1 advisory.
Description:	Summary: The remote host is missing an update for the 'libnss-db' package(s) announced via the USN-922-1 advisory. Vulnerability Insight: Stephane Chazelas discovered that libnss-db did not correctly set up a database environment. A local attacker could exploit this to read the first line of arbitrary files, leading to a loss of privacy and possibly privilege escalation. Affected Software/OS: 'libnss-db' package(s) on Ubuntu 8.04, Ubuntu 8.10, Ubuntu 9.04, Ubuntu 9.10. Solution: Please install the updated package(s). CVSS Score: 1.9 CVSS Vector: AV:L/AC:M/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2010-0826 BugTraq ID: 39132 http://www.securityfocus.com/bid/39132 http://lists.fedoraproject.org/pipermail/package-announce/2010-April/038760.html http://www.mandriva.com/security/advisories?name=MDVSA-2010:077 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10727 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6681 http://secunia.com/advisories/39165 http://www.ubuntu.com/usn/USN-922-1 http://www.vupen.com/english/advisories/2010/0776 http://www.vupen.com/english/advisories/2010/0841 http://www.vupen.com/english/advisories/2010/0903
Copyright	Copyright (C) 2010 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.