Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2005:211: lynx Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the lynx package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2005:211 (lynx).
An arbitrary command execution vulnerability was discovered in the lynx
'lynxcgi:' URI handler. A possible hacker could create a web page that redirects to a
malicious URL which could then execute arbitrary code as the user running lynx.
The updated packages have been patched to address this issue.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2005:211
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.