Family: Debian Local Security Checks --> Category: infos
[DSA746] DSA-746-1 phpgroupware Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
A vulnerability had been identified in the xmlrpc library included with
phpgroupware, a web-based application including email, calendar and
other groupware functionality. This vulnerability could lead to the
execution of arbitrary commands on the server running phpgroupware.
The security team is continuing to investigate the version of
phpgroupware included with the old stable distribution (woody). At this
time we recommend disabling phpgroupware or upgrading to the current
stable distribution (sarge).
For the current stable distribution (sarge) this problem has been fixed
in version 0.9.16.005-3.sarge0.
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your phpgroupware package.
Solution : http://www.debian.org/security/2005/dsa-746
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.