Vulnerability Scanning Solutions, LLC.
Our Process
What We Scan For
Sample Report
Client List
Contact Us
What We Scan For
Family: Debian Local Security Checks --> Category: infos

[DSA346] DSA-346-1 phpsysinfo Vulnerability Scan

Vulnerability Scan Summary
DSA-346-1 phpsysinfo

Detailed Explanation for this Vulnerability Test

Albert Puigsech Galicia reported that phpsysinfo,
a web-based program to display status information about the system,
contains two vulnerabilities which could allow local files to be read,
or arbitrary PHP code to be executed, under the rights of the web
server process (usually www-data). These vulnerabilities require
access to a writable directory on the system in order to be exploited.
For the stable distribution (woody) this problem has been fixed in
version 2.0-3woody1.
For the unstable distribution (sid) this problem will be fixed soon.
See Debian bug #200543.
We recommend that you update your phpsysinfo package.

Solution :
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.


P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.