NASLDB: Mandrake Linux Security Advisory : bind (MDKSA-2002:001)
General
ID: 13909
Name: Mandrake Linux Security Advisory : bind (MDKSA-2002:001)
Summary: Checks rpm output for the updated packages
Credits: Tenable Network Security, Inc.
Classification
Risk: –
CVSS: –
CVSS Base Vector: –
CVSS Temporal Vector: –
Port: 0
Family: Mandriva Local Security Checks
Type: Local
Description
There are some insecure permissions on configuration files and
executables with the bind 9.x packages shipped with Mandrake Linux 8.0
and 8.1. This update provides stricter permissions by making the
/etc/rndc.conf and /etc/rndc.key files read/write by the named user
and by making /sbin/rndc-confgen and /sbin/rndc read/write/executable
only by root.
Exploiting
Exploit Available: –
Exploitability Ease: –
Sources
CVE: –
OSVDB: –
Bugtraq: –
scipID: –
Timeline
Vulnerability Disclosure: –
Patch Release: 2002/01/08
Plugin Release: 2004/07/31
Plugin
Version: 1.11
Filename: mandrake_MDKSA-2002-001.nasl
Filesize: 3517 bytes
MD5 Hash: 80ad8bb59cecb583763ea5af27363379
Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list
Dependencies: "ssh_get_info.nasl"
Copyright: This script is Copyright© 2004-2012 Tenable Network Security, Inc.
- Latest Plugins
- USN-1611-1 : thunderbird vulnerabilities
- USN-1610-1 : linux vulnerability
- USN-1609-1 : linux-ti-omap4 vulnerability
- SuSE 10 Security Update : PostgreSQL
- RHSA-2012-1364: bind97
- RHSA-2012-1363: bind
- RHSA-2012-1362: thunderbird
- RHSA-2012-1361: xulrunner
- Mandriva Linux Security Advisory : graphicsmagick
- FreeBSD : phpMyAdmin — Multiple XSS due to unescaped HTML output in Trigger, Procedure and Event pages and Fetching the version information from a non-SSL site is vulnerable to a MITM attack