Family: Debian Local Security Checks --> Category: infos
[DSA462] DSA-462-1 xitalk Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Steve Kemp from the Debian Security Audit Project discovered a problem in
xitalk, a talk intercept utility for the X Window System. A local
user can exploit this problem and execute arbitrary commands under the
GID utmp. This could be used by a possible hacker to remove traces from the
For the stable distribution (woody) this problem has been fixed in
For the unstable distribution (sid) this problem will be fixed soon.
We recommend that you upgrade your xitalk package.
Solution : http://www.debian.org/security/2004/dsa-462
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.