RHSA-2003-145: kernel

Medium Nessus Plugin ID 12388

Synopsis

The remote host is missing the patch for the advisory RHSA-2003-145

Description

The remote host is running a kernel which is vulnerable to a remote denial of service.

The Linux kernel handles all the low-level functionality of the Operating System. This version of the kernel is vulnerable to a flaw wherein a remote attacker can forge source IP addresses in such a way as to create a very long routing hash chain. An attacker, exploiting this flaw, would need the ability to craft TCP/IP packets destined to (or through) the Linux kernel.
A successful attack would shut down the server.

Solution

Get the newest RedHat updates.

See Also

http://rhn.redhat.com/errata/RHSA-2003-145.html

Plugin Details

Severity: Medium

ID: 12388

File Name: redhat-RHSA-2003-145.nasl

Version: $Revision: 1.9 $

Agent: unix

Published: 2004/07/06

Modified: 2017/01/10

Dependencies: 12634

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

Required KB Items: Host/RedHat/rpm-list

Reference Information

CVE: CVE-2003-0244