Scientific Linux Security Update : xinetd on SL5.x, SL6.x i386/x86_64
High Nessus Plugin ID 70365
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionIt was found that xinetd ignored the user and group configuration directives for services running under the tcpmux-server service. This flaw could cause the associated services to run as root. If there was a flaw in such a service, a remote attacker could use it to execute arbitrary code with the privileges of the root user. (CVE-2013-4342)
SolutionUpdate the affected xinetd and / or xinetd-debuginfo packages.