SUSE-SA:2005:015: openslp

medium Nessus Plugin ID 17325

Synopsis

The remote host is missing a vendor-supplied security patch

Description

The remote host is missing the patch for the advisory SUSE-SA:2005:015 (openslp).


The SUSE Security Team reviewed critical parts of the OpenSLP package, an open source implementation of the Service Location Protocol (SLP).
SLP is used by Desktops to locate certain services such as printers and by servers to announce their services.
During the audit, various buffer overflows and out of bounds memory access have been fixed which can be triggered by remote attackers by sending malformed SLP packets.

Solution

http://www.suse.de/security/advisories/2005_15_openslp.html

Plugin Details

Severity: Medium

ID: 17325

File Name: suse_SA_2005_015.nasl

Version: 1.8

Agent: unix

Published: 3/15/2005

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

Required KB Items: Host/SuSE/rpm-list