|
Family: Debian Local Security Checks --> Category: infos
[DSA574] DSA-574-1 cabextract Vulnerability Scan
Vulnerability Scan Summary DSA-574-1 cabextract
Detailed Explanation for this Vulnerability Test
The upstream developers discovered a problem in cabextract, a tool to
extract cabinet files. The program was able to overwrite files in
upper directories. This could lead a possible hacker to overwrite arbitrary
files.
For the stable distribution (woody) this problem has been fixed in
version 0.2-2b.
For the unstable distribution (sid) this problem has been fixed in
version 1.1-1.
We recommend that you upgrade your cabextract package.
Solution : http://www.debian.org/security/2004/dsa-574
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|