Scientific Linux Security Update : elinks on SL5.x, SL6.x i386/x86_64
Medium Nessus Plugin ID 64566
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionIt was found that ELinks performed client credentials delegation during the client-to-server GSS security mechanisms negotiation. A rogue server could use this flaw to obtain the client's credentials and impersonate that client to other servers that are using GSSAPI.
SolutionUpdate the affected elinks and / or elinks-debuginfo packages.