SuSE 10 Security Update : gnutls (ZYPP Patch Number 2117)

This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 10 host is missing a security-related patch.

Description :

A security problem was fixed in the GNU TLS library, where excess data
was not checked during signature checking with RSA keys with exponent
3.

This problem could be used to fake those RSA signatures.
(CVE-2006-4790)

See also :

http://support.novell.com/security/cve/CVE-2006-4790.html

Solution :

Apply ZYPP patch number 2117.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)

Family: SuSE Local Security Checks

Nessus Plugin ID: 29447 ()

Bugtraq ID:

CVE ID: CVE-2006-4790

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now