Family: Debian Local Security Checks --> Category: infos
[DSA857] DSA-857-1 graphviz Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Javier Fernández-Sanguino Peña discovered insecure temporary file
creation in graphviz, a rich set of graph drawing tools, that can be
exploited to overwrite arbitrary files by a local attacker.
For the old stable distribution (woody) this problem probably persists
but the package is non-free.
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your graphviz package.
Solution : http://www.debian.org/security/2005/dsa-857
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.