NASLDB: Debian DSA-2481-1 : arpwatch - fails to drop supplementary groups
General
ID: 59759
Name: Debian DSA-2481-1 : arpwatch – fails to drop supplementary groups
Summary: Checks dpkg output for the updated package
Credits: –
Classification
Risk: –
CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
CVSS Temporal Vector: –
Port: 0
Family: Debian Local Security Checks
Type: Local
Description
Steve Grubb from Red Hat discovered that a patch for arpwatch (as
shipped at least in Red Hat and Debian distributions) in order to make
it drop root privileges would fail to do so and instead add the root
group to the list of the daemon uses.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: CVE-2012-2653
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: 2012/06/02
Plugin Release: 2012/06/29
Plugin
Version: 1.2
Filename: debian_DSA-2481.nasl
Filesize: 2860 bytes
MD5 Hash: bf20f473f784729685735f2cc74bbb84
Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l
Dependencies: "ssh_get_info.nasl"
Copyright: This script is© 2012 Tenable Network Security, Inc.
- Letzte Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack