|
Family: Debian Local Security Checks --> Category: infos
[DSA575] DSA-575-1 catdoc Vulnerability Scan
Vulnerability Scan Summary DSA-575-1 catdoc
Detailed Explanation for this Vulnerability Test
A temporary file problem has been discovered in xlsview from the
catdoc suite, convertors from Word to TeX and plain text, which could
lead to local users being able to overwrite arbitrary files via a
symlink attack on predictable temporary file names.
For the stable distribution (woody) this problem has been fixed in
version 0.91.5-1.woody3.
For the unstable distribution (sid) this problem has been fixed in
version 0.91.5-2.
We recommend that you upgrade your catdoc package.
Solution : http://www.debian.org/security/2004/dsa-575
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|