This script is Copyright (C) 2004-2013 Tenable Network Security, Inc.
The remote Mandrake Linux host is missing one or more security
A buffer overflow was discovered in the snort RPC normalization
routines by ISS-XForce which can cause snort to execute arbitrary code
embedded within sniffed network packets. The rpc_decode preprocessor
is enabled by default. The snort developers have released version
1.9.1 to correct this behaviour; snort versions from 1.8 up to 1.9.0
For those unable to upgrade, you can disable the rpc_decode
preprocessor by commenting out the line (place a '#' character at the
beginning of the line) that enables it in your snort.conf file :
See also :
Update the affected packages.
Risk factor :
Critical / CVSS Base Score : 10.0