Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2002:063: fetchmail Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the fetchmail package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2002:063 (fetchmail).
Several buffer overflows and a boundary check error were discovered in all
fetchmail versions prior to 6.1.0 by e-matters GmbH. These problems are
vulnerable to crashes and/or arbitrary code execution by remote attackers if
fetchmail is running in multidrop mode. The code execution would be done with
the same privilege as the user running fetchmail.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2002:063
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.