Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Security

Is kemp vulnerable to CVE-2003-0001?

Updated

 

Information

 

Summary:

Is kemp vulnerable to CVE-2003-0001?
Environment:

Product: Loadmaster

Version: Any

Platform: Any

Application: N/A
Question/Problem Description:

This vulnerability is known as CVE-2003-0001: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0001
 
This is not Vulnerable. This exploit affects the Linux kernel version 2.x.x release series; LoadMaster currently (LMOS 7.2.57) runs with the 4.14.137 kernel as per: https://support.kemptechnologies.com/hc/en-us/articles/360047507831-LoadMaster-Vulnerabilities
 
Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause: If customer does not want this scan to show up on their VAPT scan, the scanning vendor need to turn off the false positive report as kemp is not vulnerable to this.
Resolution:

From 7.2.44 firmware version and onwards, the LoadMaster Operating System (LMOS) Linux kernel was upgraded from linux-4.9.58 to linux-4.9.124 to provide security and stability improvements. (see Feature Enhancements in link below)

https://support.kemptechnologies.com/hc/en-us/articles/360018905631-LoadMaster-7-2-44-Release-Notes

This CVE affects the Linux kernel version 2.x.x release series only: https://support.kemptechnologies.com/hc/en-us/articles/360047507831-LoadMaster-Vulnerabilities
Workaround:  
Notes:

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0001

https://support.kemptechnologies.com/hc/en-us/articles/360047507831-LoadMaster-Vulnerabilities
Was this article helpful?
0 out of 0 found this helpful

Comments

In this document