RHEL 2.1 : kon2 (RHSA-2003:050)

This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.

Synopsis :

The remote Red Hat host is missing one or more security updates.

Description :

A buffer overflow in kon2 allows local users to obtain root

KON is a Kanji emulator for the console. There is a buffer overflow
vulnerability in the command line parsing code portion of the kon
program up to and including version 0.3.9b. This vulnerability, if
appropriately exploited, can lead to local users being able to gain
escalated (root) privileges.

All users of kon2 should update to these errata packages which contain
a patch to fix this vulnerability.

Red Hat would like to thank Janusz Niewiadomski for notifying us of
this issue.

See also :


Solution :

Update the affected kon2 and / or kon2-fonts packages.

Risk factor :

High / CVSS Base Score : 7.2

Family: Red Hat Local Security Checks

Nessus Plugin ID: 12363 ()

Bugtraq ID:

CVE ID: CVE-2002-1155

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now