Family: Mandrake Local Security Checks --> Category: infos
MDKSA-2007:017: wget Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the wget package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory MDKSA-2007:017 (wget).
The ftp_syst function in ftp-basic.c in Free Software Foundation (FSF)
GNU wget 1.10.2 allows remote attackers to cause a denial of service
(application crash) via a malicious FTP server with a large number of
blank 220 responses to the SYST command.
The updated packages have been patched to correct this problem.
Solution : http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2007:017
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.