Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 55155 |
Category: | Fedora Local Security Checks |
Title: | Fedora Core 3 FEDORA-2005-812 (ntp) |
Summary: | NOSUMMARY |
Description: | Description: The remote host is missing an update to ntp announced via advisory FEDORA-2005-812. When starting xntpd with the -u option and specifying the group by using a string not a numeric gid the daemon uses the gid of the user not the group. This problem is now fixed by this update. The Common Vulnerabilities and Exposures project assigned the name CVE-2005-2496 to this issue. * Fri Aug 26 2005 Jindrich Novy 4.2.0.a.20040617-5.FC3 - release update to fix CVE-2005-2496 (#147743) * Thu Apr 14 2005 Jiri Ryska - 4.2.0.a.20040617-4.FC3 - fixed gid setting when ntpd started with -u flag Solution: Apply the appropriate updates. This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/ This update can also be installed with the Update Agent you can launch the Update Agent with the 'up2date' command. http://www.securityspace.com/smysecure/catid.html?in=FEDORA-2005-812 Risk factor : Medium CVSS Score: 4.6 |
Cross-Ref: |
BugTraq ID: 14673 Common Vulnerability Exposure (CVE) ID: CVE-2005-2496 http://www.securityfocus.com/bid/14673 Debian Security Information: DSA-801 (Google Search) http://www.debian.org/security/2005/dsa-801 http://www.securityspace.com/smysecure/catid.html?id=55155 http://www.mandriva.com/security/advisories?name=MDKSA-2005:156 http://www.osvdb.org/19055 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9669 http://www.redhat.com/support/errata/RHSA-2006-0393.html http://securitytracker.com/id?1016679 http://secunia.com/advisories/16602 http://secunia.com/advisories/21464 http://www.vupen.com/english/advisories/2005/1561 XForce ISS Database: ntp-incorrect-group-permissions(22035) https://exchange.xforce.ibmcloud.com/vulnerabilities/22035 |
Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |