Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2004:121: netatalk Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the netatalk package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2004:121 (netatalk).
The etc2ps.sh script, part of the netatalk package, creates files in /tmp with
predicatable names which could allow a local attacker to use symbolic links to
point to a valid file on the filesystem which could lead to the overwriting of
arbitrary files if etc2ps.sh is executed by someone with enough privilege.
The updated packages are patched to prevent this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2004:121
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.