Executive Summary

Summary
Title Updated ypserv packages fix a denial of service vulnerability
Informations
Name RHSA-2003:201 First vendor Publication 2003-06-25
Vendor RedHat Last vendor Modification 2003-06-25
Severity (Vendor) N/A Revision 01

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score 5 Attack Range Network
Cvss Impact Score 2.9 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Problem Description:

Original Source

Url : https://rhn.redhat.com/errata/RHSA-2003-201.html

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:667
 
Oval ID: oval:org.mitre.oval:def:667
Title: ypserv NIS Server Denial of Service
Description: ypserv NIS server before 2.7 allows remote attackers to cause a denial of service via a TCP client request that does not respond to the server, which causes ypserv to block.
Family: unix Class: vulnerability
Reference(s): CVE-2003-0251
 Version: 4
Platform(s): Red Hat Linux 9
 Product(s): ypserv
Definition Synopsis:

Open Source Vulnerability Database (OSVDB)

Id Description
13401 ypserv NIS Server Opened TCP Connection DoS

Nessus® Vulnerability Scanner

Date Description
2004-07-31 Name : The remote Mandrake Linux host is missing a security update.
File : mandrake_MDKSA-2003-072.nasl - Type : ACT_GATHER_INFO
2004-07-06 Name : The remote Red Hat host is missing a security update.
File : redhat-RHSA-2003-201.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.
0
Date Informations
2014-02-17 11:48:11
  • Multiple Updates