FreeBSD : GNATS local privilege elevation (4d837296-cc28-11d8-a54c-02e0185c0b53)

high Nessus Plugin ID 36730

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

GNATS 3.113.1 contains multiple buffer overflows, through which a local attacker could gain elevated privileges on the system.

Solution

Update the affected package.

See Also

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=56006

https://www.securityfocus.com/archive/1/326337

http://www.securiteam.com/unixfocus/5CP0N0UAAA.html

http://www.nessus.org/u?e78c61b4

http://www.gnu.org/software/gnats/gnats.html

http://www.nessus.org/u?b29a014e

Plugin Details

Severity: High

ID: 36730

File Name: freebsd_pkg_4d837296cc2811d8a54c02e0185c0b53.nasl

Version: 1.15

Type: local

Published: 4/23/2009

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:gnats, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 7/2/2004

Vulnerability Publication Date: 6/21/2003

Reference Information

Secunia: 9096