Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2002:045: mm Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the mm package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2002:045 (mm).
Marcus Meissner and Sebastian Krahmer discovered a temporary file vulnerability
in the mm library which is used by the Apache webserver. This vulnerability can
be exploited to obtain root privilege if shell access to the apache user
(typically apache or nobody) is already obtained.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2002:045
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.