Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2001:051: minicom Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the minicom package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2001:051 (minicom).
Several format string vulnerabilities exist in the minicom program. These bugs
can be exploited to obtain group uucp privilege. A simple fix is to simply
remove the setgid bit on /usr/bin/minicom, however these new packages introduce
some fixes for the vulnerabilties through a patch from Red Hat, and also strip
the setgid bit.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2001:051
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.