Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2002:011: gzip Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the gzip package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2002:011 (gzip).
There are two problems with the gzip archiving program
the first is a crash
when an input file name is over 1020 characters, and the second is a buffer
overflow that could be exploited if gzip is run on a server such as an FTP
server. The patch applied is from the gzip developers and the problems have been
fixed in the latest beta.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2002:011
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.