|
Family: Debian Local Security Checks --> Category: infos
[DSA544] DSA-544-1 webmin Vulnerability Scan
Vulnerability Scan Summary DSA-544-1 webmin
Detailed Explanation for this Vulnerability Test
Ludwig Nussel discovered a problem in webmin, a web-based
administration toolkit. A temporary directory was used but without
checking for the previous owner. This could allow a possible hacker to
create the directory and place dangerous symbolic links inside.
For the stable distribution (woody) this problem has been fixed in
version 0.94-7woody3.
For the unstable distribution (sid) this problem has been fixed in
version 1.160-1 of webmin and 1.090-1 of usermin.
We recommend that you upgrade your webmin packages.
Solution : http://www.debian.org/security/2004/dsa-544
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|