|
|
Family: Debian Local Security Checks --> Category: infos
[DSA595] DSA-595-1 bnc Vulnerability Scan
Vulnerability Scan Summary
DSA-595-1 bnc
Detailed Explanation for this Vulnerability Test
Leon Juranic discovered that BNC, an IRC session bouncing proxy, does
not always protect buffers from being overwritten. This could
exploited by a malicious IRC server to overflow a buffer of limited
size and execute arbitrary code on the client host.
For the stable distribution (woody) this problem has been fixed in
version 2.6.4-3.3.
This package does not exist in the testing or unstable distributions.
We recommend that you upgrade your bnc package.
Solution : http://www.debian.org/security/2004/dsa-595
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
