SuSE9 Security Update : findutils-locate (YOU Patch Number 11653)

high Nessus Plugin ID 41141

Synopsis

The remote SuSE 9 host is missing a security-related patch.

Description

The cronjob that deletes old core files can be tricked to delete arbitrary files if DELETE_OLD_CORE is set to yes in /etc/sysconfig/cron. (By default, the variable is set to no.)

Solution

Apply YOU patch number 11653.

Plugin Details

Severity: High

ID: 41141

File Name: suse9_11653.nasl

Version: 1.7

Type: local

Agent: unix

Family: SuSE Local Security Checks

Published: 9/24/2009

Updated: 1/14/2021

Supported Sensors: Nessus Agent, Nessus

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 7/31/2007

Detections

Analytics