How to Buy
This script is Copyright (C) 2005-2016 Tenable Network Security, Inc.
The remote Red Hat host is missing a security update.
An updated logwatch package that fixes a denial of service issue is
This update has been rated as having moderate security impact by the
Red Hat Security Response Team.
LogWatch is a customizable log analysis system. LogWatch parses
through your system's logs for a given period of time and creates a
report analyzing areas that you specify, in as much detail as you
A bug was found in the logwatch secure script. If an attacker is able
to inject an arbitrary string into the /var/log/secure file, it is
possible to prevent logwatch from detecting malicious activity. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CVE-2005-1061 to this issue.
All users of logwatch are advised to upgrade to this updated package,
which contain backported fixes for this issue.
See also :
Update the affected logwatch package.
Risk factor :
Medium / CVSS Base Score : 5.0
Family: Red Hat Local Security Checks
Nessus Plugin ID: 18094 ()
CVE ID: CVE-2005-1061
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.