Family: Debian Local Security Checks --> Category: infos
[DSA052] DSA-052-1 sendfile Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Daniel Kobras has discovered and fixed a problem in sendfiled which
caused the daemon not to drop rights as expected when sending
notification mails. Exploiting this, a local user can easily make it
execute arbitrary code under root rights.
We recommend that you upgrade your sendfile package immediately.
Solution : http://www.debian.org/security/2001/dsa-052
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.