SuSE 10 Security Update : LUM (ZYPP Patch Number 2274)

High Nessus Plugin ID 29531


The remote SuSE 10 host is missing a security-related patch.


A security problem was fixed in 'novell-lum', the eDirectory based 'Linux User Management'. Under certain circumstances it was possible to login to the console without any password. (ssh is not affected, since it rejects empty passwords).


Apply ZYPP patch number 2274.

Plugin Details

Severity: High

ID: 29531

File Name: suse_novell-lum-2274.nasl

Version: $Revision: 1.9 $

Type: local

Agent: unix

Published: 2007/12/13

Modified: 2012/05/17

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2006/11/15