| Revision Date: | 2014-05-26 | Version: | 13 |
| Title: | ELSA-2013:0499: xinetd security and bug fix update (Low) |
| Description: | builtins.c in Xinetd before 2.3.15 does not check the service type when the tcpmux-server service is enabled, which exposes all enabled services and allows remote attackers to bypass intended access restrictions via a request to tcpmux port 1. |
| Family: | unix | Class: | patch |
| Status: | ACCEPTED | Reference(s): | CVE-2012-0862
ELSA-2013:0499-02
|
| Platform(s): | Oracle Linux 6
| Product(s): | xinetd
|
| Definition Synopsis |
| xinetd is earlier than 2:2.3.14-38.el6 AND Oracle Linux 6.x
|