Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:036: xchat Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the xchat package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:036 (xchat).
A remotely exploitable vulnerability was discovered in the Socks-5 proxy code in
XChat. By default, socks5 traversal is disabled, and one would also need to
connect to a possible hacker's own custom proxy server in order for this to be
exploited. Successful exploitation could lead to arbitrary code execution as the
user running XChat.
The provided packages are patched to prevent this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:036
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.