This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote SuSE 11 host is missing one or more security updates.
elfutils has been updated to fix one security issue :
- Directory traversal vulnerability in the read_long_names
function in libelf/elf_begin.c in elfutils 0.152 and
0.161 allowed remote attackers to write to arbitrary
files to the root directory via a / (slash) in a crafted
archive, as demonstrated using the ar program.
See also :
Apply SAT patch number 10328.
Risk factor :
Medium / CVSS Base Score : 6.4