Family: Debian Local Security Checks --> Category: infos
[DSA935] DSA-935-1 libapache2-mod-auth-pgsql Vulnerability Scan
Vulnerability Scan Summary
Detailed Explanation for this Vulnerability Test
iDEFENSE reports that a format string vulnerability in mod_auth_pgsql, a
library used to authenticate web users against a PostgreSQL database,
could be used to execute arbitrary code with the rights of the httpd
The old stable distribution (woody) does not contain
For the stable distribution (sarge) this problem has been fixed in
For the unstable distribution (sid) this problem will be fixed shortly.
We recommend that you upgrade your libapache2-mod-auth-pgsql package.
Solution : http://www.debian.org/security/2006/dsa-935
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.