Family: Debian Local Security Checks --> Category: infos
[DSA1058] DSA-1058-1 awstats Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Hendrik Weimer discovered that specially crafted web requests can
cause awstats, a powerful and featureful web server log analyzer, to
execute arbitrary commands.
The old stable distribution (woody) is not affected by this problem.
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your awstats package.
Solution : http://www.debian.org/security/2006/dsa-1058
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.