Family: Debian Local Security Checks --> Category: infos
[DSA418] DSA-418-1 vbox3 Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
A bug was discovered in vbox3, a voice response system for isdn4linux,
whereby root rights were not properly relinquished before
executing a user-supplied tcl script. By exploiting this
vulnerability, a local user could gain root rights.
For the current stable distribution (woody) this problem has been
fixed in version 0.1.7.1.
For the unstable distribution, this problem has been fixed in version 0.1.8.
We recommend that you update your vbox3 package.
Solution : http://www.debian.org/security/2004/dsa-418
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.