Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:048: curl Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the curl package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:048 (curl).
'infamous41md' discovered a buffer overflow vulnerability in libcurl's NTLM
authorization base64 decoding. This could allow a remote attacker using a
prepared remote server to execute arbitrary code as the user running curl.
The updated packages are patched to deal with these issues.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:048
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.