SystemTap Multiple Vulnerabilities Network Vulnerability

Summary

This host has SystemTap installed and is prone to multiple vulnerabilities.

Impact

Successful exploitation could allow local users to Denial of Service and potentially gain escalated privileges. Impact Level: System.

Solution

Apply the available patch from below link, http://sourceware.org/git/gitweb.cgi?p=systemtap.git a=patch h=a2d399c87a642190f08ede63dc6fc434a5a8363a ***** NOTE: Ignore this warning if above mentioned patch is already applied. *****

Insight

The flaw is due to multiple integer signedness errors in the '__get_argv()' and '__get_compat_argv()' functions in 'tapset/aux_syscall.stp' via a process with a large number of arguments.

Affected

SystemTap versions 1.1 and prior.

References

http://secunia.com/advisories/38426
https://bugzilla.redhat.com/show_bug.cgi?id=559719

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-0411

CVSS	Base Score: 4.9 AV:L/AC:L/Au:N/C:N/I:N/A:C

Related Vulnerabilities

Apple Safari 'javascript: URI' XSS Vulnerability - Sep09
Apple Safari Webcore Webkit 'XSSAuditor.cpp' XSS Vulnerability (Windows)
Apple Safari WebKit Information Disclosure Vulnerability (Mac OS X)
Apache Error Log Escape Sequence Injection
Adobe Reader Multiple Vulnerabilities - Aug07 (Linux)

Take action and discover your vulnerabilities