|
Family: Debian Local Security Checks --> Category: infos
[DSA865] DSA-865-1 hylafax Vulnerability Scan
Vulnerability Scan Summary DSA-865-1 hylafax
Detailed Explanation for this Vulnerability Test
Javier Fernández-Sanguino Peña discovered that several scripts of the
hylafax suite, a flexible client/server fax software, create temporary
files and directories in an insecure fashion, leaving them vulnerable
to symlink exploits.
For the old stable distribution (woody) this problem has been fixed in
version 4.1.1-3.2.
For the stable distribution (sarge) this problem has been fixed in
version 4.2.1-5sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 4.2.2-1.
We recommend that you upgrade your hylafax packages.
Solution : http://www.debian.org/security/2005/dsa-865
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|