Family: Debian Local Security Checks --> Category: infos
[DSA907] DSA-907-1 ipmenu Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
Akira Yoshiyama noticed that ipmenu, an cursel iptables/iproute2 GUI,
creates a temporary file in an insecure fashion allowing a local
attacker to overwrite arbitrary files utilising a symlink attack.
For the old stable distribution (woody) this problem has been fixed in
The stable distribution (sarge) does not contain the ipmenu package.
For the unstable distribution (sid) this problem has been fixed in
We recommend that you upgrade your ipmenu package.
Solution : http://www.debian.org/security/2005/dsa-907
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.