Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2001:085: procmail Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the procmail package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2001:085 (procmail).
In older versions of procmail, it is possible to crash procmail by sending it
certain signals. If procmail is installed setuid, this could be exploited to
gain unauthorized privilege. This problem is fixed in unstable version 3.20 and
stable version 3.15.2.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2001:085
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.