Family: Debian Local Security Checks --> Category: infos
[DSA088] DSA-088-1 fml Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
The fml (a mailing list package) as distributed in Debian GNU/Linux 2.2
suffers from a cross-site scripting problem. When generating index
pages for list archives the `<' and `>' characters were not properly
escaped for subjects.
This has been fixed in version 3.0+beta.20000106-5, and we recommend
that you upgrade your fml package to that version. Upgrading will
automatically regenerate the index pages.
Solution : http://www.debian.org/security/2001/dsa-088
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.