|
|
Family: Debian Local Security Checks --> Category: infos
[DSA265] DSA-265-1 bonsai Vulnerability Scan
Vulnerability Scan Summary
DSA-265-1 bonsai
Detailed Explanation for this Vulnerability Test
Rémi Perrot fixed several security related bugs in the bonsai, the
Mozilla CVS query tool by web interface. Vulnerabilities include
arbitrary code execution, cross-site scripting and access to
configuration parameters. The Common Vulnerabilities and Exposures
project identifies the following problems:
For the stable distribution (woody) these problems have been fixed in
version 1.3+cvs20020224-1woody1.
The old stable distribution (potato) is not affected since it doesn't
contain bonsai.
For the unstable distribution (sid) these problems have been fixed in
version 1.3+cvs20030317-1.
We recommend that you upgrade your bonsai package.
Solution : http://www.debian.org/security/2003/dsa-265
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
