|
Family: Debian Local Security Checks --> Category: infos
[DSA194] DSA-194-1 masqmail Vulnerability Scan
Vulnerability Scan Summary DSA-194-1 masqmail
Detailed Explanation for this Vulnerability Test
A set of buffer overflows have been discovered in masqmail, a mail
transport agent for hosts without permanent internet connection. In
addition to this rights were dropped only after reading a user
supplied configuration file. Together this could be exploited to gain
unauthorized root access to the machine on which masqmail is
installed.
These problems have been fixed in version 0.1.16-2.1 for the current
stable distribution (woody) and in version 0.2.15-1 for the unstable
distribution (sid). The old stable distribution (potato) is not
affected since it doesn't contain a masqmail package.
We recommend that you upgrade your masqmail package immediately.
Solution : http://www.debian.org/security/2002/dsa-194
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|