SystemTap Multiple Vulnerabilities Network Vulnerability

Summary

This host has SystemTap installed and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow local users to Denial of Service and potentially gain escalated privileges. Impact Level: System.

Solution

Apply the available patch from below link, http://sourceware.org/git/gitweb.cgi?p=systemtap.git a=patch h=a2d399c87a642190f08ede63dc6fc434a5a8363a ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The flaw is due to multiple integer signedness errors in the '__get_argv()' and '__get_compat_argv()' functions in 'tapset/aux_syscall.stp' via a process with a large number of arguments.

Affected

SystemTap versions 1.1 and prior.

References

http://secunia.com/advisories/38426
https://bugzilla.redhat.com/show_bug.cgi?id=559719

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0411
CVSS Base Score: 4.9
AV:L/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Apple Safari Address Bar Spoofing Vulnerability june-10 (Win)
aMSN session hijack vulnerability (Windows)
Apache /server-status accessible
Apple Safari Multiple Memory Corruption Vulnerabilities-02 Aug14 (Mac OS X)
Apple Remote Desktop Information Disclosure Vulnerability

Take action and discover your vulnerabilities