Family: Debian Local Security Checks --> Category: infos
[DSA256] DSA-256-1 mhc Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
A problem has been discovered in adb2mhc from the mhc-utils package. The
default temporary directory uses a predictable name. This adds a
vulnerability that allows a local attacker to overwrite arbitrary
files the users has write permissions for.
For the stable distribution (woody) this problem has been
fixed in version 0.25+20010625-7.1.
The old stable distribution (potato) does not contain mhc
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your mhc-utils packages.
Solution : http://www.debian.org/security/2003/dsa-256
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.