Scientific Linux Security Update : piranha on SL5.x i386/x86_64
Medium Nessus Plugin ID 72500
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionIt was discovered that the Piranha Configuration Tool did not properly restrict access to its web pages. A remote attacker able to connect to the Piranha Configuration Tool web server port could use this flaw to read or modify the LVS configuration without providing valid administrative credentials. (CVE-2013-6492)
SolutionUpdate the affected piranha and / or piranha-debuginfo packages.