|
Family: Debian Local Security Checks --> Category: infos
[DSA670] DSA-670-1 emacs20 Vulnerability Scan
Vulnerability Scan Summary DSA-670-1 emacs20
Detailed Explanation for this Vulnerability Test
Max Vozeler discovered several format string vulnerabilities in the
movemail utility of Emacs, the well-known editor. Via connecting to a
malicious POP server a possible hacker can execute arbitrary code under the
rights of group mail.
For the stable distribution (woody) these problems have been fixed in
version 20.7-13.3.
The unstable distribution (sid) does not contain an Emacs20 package
anymore.
We recommend that you upgrade your emacs packages.
Solution : http://www.debian.org/security/2005/dsa-670
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|