SuSE 10 Security Update : sysconfig (ZYPP Patch Number 7892)

High Nessus Plugin ID 57872


The remote SuSE 10 host is missing a security-related patch.


The following bug has been fixed :

- sysconfig hook script for NetworkManager did not properly quote shell meta characters when processing ESSIDs. Specially crafted network names could have therefore lead to execution of shell code.


Apply ZYPP patch number 7892.

See Also

Plugin Details

Severity: High

ID: 57872

File Name: suse_sysconfig-7892.nasl

Version: $Revision: 1.3 $

Type: local

Agent: unix

Published: 2012/02/09

Modified: 2012/05/17

Dependencies: 12634

Risk Information

Risk Factor: High

Vulnerability Information

CPE: cpe:/o:suse:suse_linux

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Patch Publication Date: 2011/12/19

Reference Information

CVE: CVE-2011-4182