|
Family: Debian Local Security Checks --> Category: infos
[DSA665] DSA-665-1 ncpfs Vulnerability Scan
Vulnerability Scan Summary DSA-665-1 ncpfs
Detailed Explanation for this Vulnerability Test
Erik Sjölund discovered several bugs in ncpfs that provides utilities
to use resources from NetWare servers of which one also applies to the
stable Debian distribution. Due to accessing a configuration file
without further checks with root permissions it is possible to read
arbitrary files.
For the stable distribution (woody) this problem has been fixed in
version 2.2.0.18-10woody2.
For the unstable distribution (sid) this problem will be fixed soon.
We recommend that you upgrade your ncpfs package.
Solution : http://www.debian.org/security/2005/dsa-665
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|