Nessus Plugin ID 11188
Christopher J Bidwell
cbidwell at usgs.gov
Fri Aug 27 11:16:05 EDT 2004
Hi all,
I've been getting reports from various users that this plugin is false:
Please read below:
Nessus is claiming the XFS vulnerability could lead to a root compromise.
The cited CERT announcement does NOT agree. CERT says it is a possible
NOBODY compromise or a DoS of font service.
The NOBODY users exists to own nothing and to be able to do nothing
dangerous.
A font DoS might be inconvenient, but is unlikely to be fatal to
anyone.
I think this test should be CORRECTED in Nessus and the vulnerability
ignored.
Thanks,
Chris
More information about the Nessus
mailing list