This script is Copyright (C) 2005-2013 Tenable Network Security, Inc.
The remote Slackware host is missing a security update.
A new php5 package is available for Slackware 10.1 in /testing to fix
security issues. PHP has been relinked with the shared PCRE library to
fix an overflow issue with PHP's builtin PRCE code, and PEAR::XMLRPC
has been upgraded to version 1.4.0 which eliminates the eval()
function. The eval() function is believed to be insecure as
implemented, and would be difficult to secure. Note that this new
package now requires that the PCRE package be installed, so be sure to
get the new package from the patches/packages/ directory if you don't
already have it.
See also :
Update the affected php package.
Risk factor :
High / CVSS Base Score : 7.5
CVSS Temporal Score : 5.5
Public Exploit Available : false
Family: Slackware Local Security Checks
Nessus Plugin ID: 19863 ()
Bugtraq ID: 14620
CVE ID: CVE-2005-2491CVE-2005-2498
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.