Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
Test ID: | 1.3.6.1.4.1.25623.1.0.52947 |
Category: | Turbolinux Local Security Tests |
Title: | Turbolinux TLSA-2003-40 (radiusd-cistron) |
Summary: | NOSUMMARY |
Description: | Description: The remote host is missing an update to radiusd-cistron announced via advisory TLSA-2003-40. Cistron RADIUS is an authentication and accounting server for terminal servers that speak the RADIUS protocol. Cistron RADIUS contains a vulnerability that allows a buffer overflow when a long NAS-Port attribute is received. This may allow remote attackers to cause a denial of service or even execute arbitrary code. Solution: Please use the turbopkg (zabom) tool to apply the update. https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2003-40 Risk factor : High CVSS Score: 7.5 |
Cross-Ref: |
Common Vulnerability Exposure (CVE) ID: CVE-2003-0450 Conectiva Linux advisory: CLA-2003:664 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000664 Debian Security Information: DSA-321 (Google Search) http://www.debian.org/security/2003/dsa-321 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=196063 SuSE Security Announcement: SuSE-SA:2003:030 (Google Search) http://www.novell.com/linux/security/advisories/2003_030_radiusd_cistron.html TurboLinux Advisory: TLSA-2003-40 http://www.turbolinux.com/security/TLSA-2003-40.txt |
Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |