|
Family: Debian Local Security Checks --> Category: infos
[DSA496] DSA-496-1 eterm Vulnerability Scan
Vulnerability Scan Summary DSA-496-1 eterm
Detailed Explanation for this Vulnerability Test
H.D. Moore discovered several terminal emulator security issues. One
of them covers escape codes that are interpreted by the terminal
emulator. This could be exploited by a possible hacker to insert malicious
commands hidden for the user, who has to hit enter to continue, which
would also execute the hidden commands.
For the stable distribution (woody) this problem has been fixed in
version 0.9.2-0pre2002042903.3.
For the unstable distribution (sid) this problem has been fixed in
version 0.9.2-6.
We recommend that you upgrade your eterm package.
Solution : http://www.debian.org/security/2004/dsa-496
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|