Vulnerability Bulletins |
Diversas vulnerabilidades en ISC INN |
|
Vulnerability classification |
|
Property | Value |
Confidence level | Oficial |
Impact | Aumento de privilegios |
Dificulty | Avanzado |
Required attacker level | Acceso remoto con cuenta |
System information |
|
Property | Value |
Affected manufacturer | GNU/Linux |
Affected software | ISC INN 2.0 - 2.2, 2.2.1 - 2.2.3 |
Description |
|
Se han descubierto diversos fallos de seguridad en dos componentes de INN, inews y rnews: ambos son vulnerables a llamadas inseguras open() en algunos binarios incluidos en INN. | |
Solution |
|
Actualización de software ISC INN 2.3.3 ftp://ftp.isc.org/isc/inn/ |
|
Standar resources |
|
Property | Value |
CVE | CAN-2002-0526 |
BID | |
Other resources |
|
BUGTRAQ:20020411 Inn (Inter Net News) security problems http://archives.neohapsis.com/archives/bugtraq/2002-04/0140.html Bugtraq ID: 6049 http://online.securityfocus.com/bid/6049 |
Version history |
||
Version | Comments | Date |
1.0 | Aviso emitido | 2003-10-29 |