|
Family: Debian Local Security Checks --> Category: infos
[DSA717] DSA-717-1 lsh-utils Vulnerability Scan
Vulnerability Scan Summary DSA-717-1 lsh-utils
Detailed Explanation for this Vulnerability Test
Several security relevant problems have been discovered in lsh, the
alternative secure shell v2 (SSH2) protocol server. The Common
Vulnerabilities and Exposures project identifies the following
vulnerabilities:
Bennett Todd discovered a heap buffer overflow in lshd which could
lead to the execution of arbitrary code.
Niels Möller discovered a denial of service condition in lshd.
For the stable distribution (woody) these problems have been fixed in
version 1.2.5-2woody3.
For the unstable distribution (sid) these problems have been fixed in
version 2.0.1-2.
We recommend that you upgrade your lsh-server package.
Solution : http://www.debian.org/security/2005/dsa-717
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|