Unrated severityNVD Advisory· Published Oct 10, 2013· Updated Apr 29, 2026

CVE-2013-4342

Description

xinetd does not enforce the user and group configuration directives for TCPMUX services, which causes these services to be run as root and makes it easier for remote attackers to gain privileges by leveraging another vulnerability in a service.

Affected products

Xinetd/Xinetd
cpe:2.3:a:xinetd:xinetd:-:*:*:*:*:*:*:*
Red Hat/Enterprise Linux2 versions
cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

bugzilla.redhat.com/show_bug.cginvdExploitPatch
rhn.redhat.com/errata/RHSA-2013-1409.htmlnvd
github.com/xinetd-org/xinetd/pull/10nvd
security.gentoo.org/glsa/201611-06nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.012
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000