Mandrake Linux Security Advisory : apcupsd (MDKSA-2003:018)

This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.


Synopsis :

The remote Mandrake Linux host is missing a security update.

Description :

A remote root vulnerability in slave setups and some buffer overflows
in the network information server code were discovered by the apcupsd
developers. They have been fixed in the latest unstable version,
3.10.5 which contains additional enhancements like USB support, and
the latest stable version, 3.8.6.

There are a few changes that need to be noted, such as the port has
changed from port 7000 to post 3551 for NIS, and the new config only
allows access from the localhost. Users may need to modify their
configuration files appropriately, depending upon their configuration.

Solution :

Update the affected apcupsd package.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)

Family: Mandriva Local Security Checks

Nessus Plugin ID: 14003 (mandrake_MDKSA-2003-018.nasl)

Bugtraq ID:

CVE ID: CVE-2003-0098
CVE-2003-0099

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now