Family: Debian Local Security Checks --> Category: infos
[DSA796] DSA-796-1 affix Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Kevin Finisterre reports that affix, a package used to manage
bluetooth sessions under Linux, uses the popen call in an unsafe
fashion. A remote attacker can exploit this vulnerability to execute
arbitrary commands on a vulnerable system.
The old stable distribution (woody) does not contain the affix
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your affix package.
Solution : http://www.debian.org/security/2005/dsa-796
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.