-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi, i experienced the following while testing my system security
Vulnerability found on port general/icmp The remote host is vulnerable to an 'icmp leak' - when it receive a packet that raise an ICMP error packet (except ICMP destination unreachable), the ICMP packet is supposed to contain the original message. but this should affect just linux 2.0.x kernels and i am running 2.4.21 Vulnerability found on port cvspserver (2401/tcp) The remote CVS server, according to its version number, is vulnerable to a double free() bug which may allow an attacker to gain a shell on this host. but i am running cvs 1.11.5 for sure. any hints? thanks a lot - -- Francesco Lamonica: f DOT lamonica AT tin DOT it PGP Fingerprint: 5870 92BA 8DFF 1ACF DE2E B94D 46EC 5505 7C64 4EF1 Favourite quote: There's no spoon -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.2 (GNU/Linux) iD8DBQE/DFpsRuxVBXxkTvERAslZAKD5iemdlAVTcjMu+CXowrulxEkECACgxOMS Jt72JmCISrw2LE3gpmXcqsc= =6VGq -----END PGP SIGNATURE-----
