|
Family: Debian Local Security Checks --> Category: infos
[DSA412] DSA-412-1 nd Vulnerability Scan
Vulnerability Scan Summary DSA-412-1 nd
Detailed Explanation for this Vulnerability Test
Multiple vulnerabilities were discovered in nd, a command-line WebDAV
interface, whereby long strings received from the remote server could
overflow fixed-length buffers. This vulnerability could be exploited
by a remote attacker in control of a malicious WebDAV server to
execute arbitrary code if the server was accessed by a vulnerable
version of nd.
For the current stable distribution (woody) this problem has been
fixed in version 0.5.0-1woody1.
For the unstable distribution (sid) this problem has been fixed in
version 0.8.2-1.
We recommend that you update your nd package.
Solution : http://www.debian.org/security/2004/dsa-412
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|