RHEL 2.1 : ypserv (RHSA-2003:201)

medium Nessus Plugin ID 12404

Synopsis

The remote Red Hat host is missing a security update.

Description

Updated ypserv packages fixing a denial of service vulnerability are now available.

The ypserv package contains the Network Information Service (NIS) server.

A vulnerability has been discovered in the ypserv NIS server prior to version 2.7. If a malicious client queries ypserv via TCP and subsequently ignores the server's response, ypserv will block attempting to send the reply. This results in ypserv failing to respond to other client requests.

Versions 2.7 and above of ypserv have been altered to fork a child for each client request, thus preventing any one request from causing the server to block.

Red Hat recommends that users of NIS upgrade to these packages, which contain version 2.8.0 of ypserv and are therefore not vulnerable to this issue.

Solution

Update the affected ypserv package.

See Also

https://access.redhat.com/security/cve/cve-2003-0251

http://www.linux-nis.org/nis/ypserv/ChangeLog

https://access.redhat.com/errata/RHSA-2003:201

Plugin Details

Severity: Medium

ID: 12404

File Name: redhat-RHSA-2003-201.nasl

Version: 1.26

Type: local

Agent: unix

Published: 7/6/2004

Updated: 1/14/2021

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/o:redhat:enterprise_linux:2.1, p-cpe:/a:redhat:enterprise_linux:ypserv

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Patch Publication Date: 6/25/2003

Vulnerability Publication Date: 7/24/2003

Reference Information

CVE: CVE-2003-0251

RHSA: 2003:201