Novell issues support pack for iChain

Secunia Advisories reports that Novell has issued a support pack for iChain. This fixes the following vulnerabilities, which can be exploited by malicious people to hijack another user's session, cause a DoS (Denial of Service) and maybe compromise a system.

1) A user can hijack another user's session if the new user's session is opened on the same port.
2) The server can be crashed by using WGET.
3) iChain is affected by the OpenSSL vulnerabilities in the ASN.1 parsing.

View the original Novell advisory at http://support.novell.com/cgi-bin/search/searchtid.cgi?/2967175.htm

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

More about CGINovell

Show Comments