|
Family: Ubuntu Local Security Checks --> Category: infos
USN248-1 : unzip vulnerability Vulnerability Scan
Vulnerability Scan Summary unzip vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote package "unzip" is missing a security patch.
Description :
A buffer overflow was discovered in the handling of file name
arguments. By tricking a user or automated system into processing a
specially crafted, excessively long file name with unzip, a possible hacker
could exploit this to execute arbitrary code with the user's
rights.
Solution :
Upgrade to :
- unzip-5.52-3ubuntu2.1 (Ubuntu 5.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|