|
Family: Debian Local Security Checks --> Category: infos
[DSA739] DSA-739-1 trac Vulnerability Scan
Vulnerability Scan Summary DSA-739-1 trac
Detailed Explanation for this Vulnerability Test
Stefan Esser discovered an input validation flaw within Trac, a wiki
and issue tracking system, that allows download/upload of files and
therefore can lead to remote code execution in some configurations.
The old stable distribution (woody) does not contain the trac package.
For the stable distribution (sarge) this problem has been fixed in
version 0.8.1-3sarge2.
For the unstable distribution (sid) this problem has been fixed in
version 0.8.4-1.
We recommend that you upgrade your trac package.
Solution : http://www.debian.org/security/2005/dsa-739
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|