Описание
xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 7 | xinetd | Not affected | ||
| Red Hat Enterprise Linux 5 | xinetd | Fixed | RHSA-2013:1409 | 07.10.2013 |
| Red Hat Enterprise Linux 6 | xinetd | Fixed | RHSA-2013:1409 | 07.10.2013 |
Показывать по
Дополнительная информация
Статус:
7.6 High
CVSS2
Связанные уязвимости
xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service.
xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service.
xinetd does not enforce the user and group configuration directives fo ...
xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service.
7.6 High
CVSS2