|
Family: Debian Local Security Checks --> Category: infos
[DSA350] DSA-350-1 falconseye Vulnerability Scan
Vulnerability Scan Summary DSA-350-1 falconseye
Detailed Explanation for this Vulnerability Test
The falconseye package is vulnerable to a buffer overflow exploited
via a long -s command line option. This vulnerability could be used
by a possible hacker to gain gid 'games' on a system where falconseye is
installed.
Note that falconseye does not contain the file permission error
CVE-2003-0359 which affected some other nethack packages.
For the stable distribution (woody) this problem has been fixed in
version 1.9.3-7woody3.
For the unstable distribution (sid) this problem has been fixed in
version 1.9.3-9.
We recommend that you update your falconseye package.
Solution : http://www.debian.org/security/2003/dsa-350
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|