SuSE 11 Security Update : YaST2 LDAP module (SAT Patch Number 896)

This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

The remote SuSE 11 host is missing a security update.

Description :

The YaST2 LDAP module in SUSE Linux Enterprise Server 11 did not
initialize the firewall configuration during second stage
installation. Therefore, if an online update required reboot during
second stage firewall settings were not applied and the firewall
turned off. (CVE-2009-1648)

See also :

https://bugzilla.novell.com/show_bug.cgi?id=492441
https://bugzilla.novell.com/show_bug.cgi?id=496862
http://support.novell.com/security/cve/CVE-2009-1648.html

Solution :

Apply SAT patch number 896.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)

Family: SuSE Local Security Checks

Nessus Plugin ID: 41464 ()

Bugtraq ID:

CVE ID: CVE-2009-1648

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now