Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2003:041-1: mutt Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the mutt package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2003:041-1 (mutt).
A vulnerability was discovered in the mutt text-mode email client in the IMAP
code. This vulnerability can be exploited by a malicious IMAP server to crash
mutt or even execute arbitrary code with the privilege of the user running mutt.
The packages for Mandrake Linux 9.1 and 9.1/PPC were not GPG-signed. This has
been fixed and as a result the md5sums have changed. Thanks to Mark Lyda for
pointing this out.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2003:041-1
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.