Family: Red Hat Local Security Checks --> Category: infos
RHSA-2003-231: semi Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the semi package
Detailed Explanation for this Vulnerability Test
The remote host has an old version of the semi package installed.
semi is a MIME library for GNU Emacs and XEmacs, which is used by
the wl mail package.
There is a vulnerability in version 1.14.3 and earlier of this
software which may allow a possible hacker to overwrite arbitrary files
on the remote system with the rights of the user reading his
mail with wl.
To exploit this flaw, a possible hacker would need to send a carefully
crafted MIME encoded email to a victim on the remote host, and
wait for him to open it using wl.
Solution : https://rhn.redhat.com/errata/RHSA-2003-231.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.