SuSE9 Security Update : tcpdump (YOU Patch Number 11696)

This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 9 host is missing a security-related patch.

Description :

A buffer overflow has been found in tcpdump which can be triggered
while displaying BGP packets. This could be exploited by an attacker
to execute malicious code under the privileges of the user running
tcpdump by presenting specially prepared BGP packets to tcpdump. This
issue is tracked by CVE-2007-3798.

See also :

http://support.novell.com/security/cve/CVE-2007-3798.html

Solution :

Apply YOU patch number 11696.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)

Family: SuSE Local Security Checks

Nessus Plugin ID: 41144 ()

Bugtraq ID:

CVE ID: CVE-2007-3798

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now