Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:199: netpbm Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the netpbm package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:199 (netpbm).
Pnmtopng in netpbm 10.2X, when using the -trans option, uses uninitialized size
and index variables when converting Portable Anymap (PNM) images to Portable
Network Graphics (PNG), which might allow attackers to execute arbitrary code
by modifying the stack. Netpbm 9.2X is not affected by this vulnerability. The
updated packages have been patched to correct this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:199
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.