|
Family: Slackware Local Security Checks --> Category: infos
SSA-2003-237-01 unzip vulnerability patched Vulnerability Scan
Vulnerability Scan Summary SSA-2003-237-01 unzip vulnerability patched
Detailed Explanation for this Vulnerability Test
Upgraded infozip packages are available for Slackware 9.0 and -current.
These fix a security issue where a specially crafted archive may
overwrite files (including system files anywhere on the filesystem)
upon extraction by a user with sufficient permissions.
For more information, see:
http://www.securityfocus.com/bid/7550
http://lwn.net/Articles/38540/
http://xforce.iss.net/xforce/xfdb/12004
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0282
Click HERE for more information and discussions on this network vulnerability scan.
|