Vulnerability Scanning Solutions, LLC.
Home
Our Process
Residential
Corporate
What We Scan For
Sample Report
Client List
Terms
Contact Us
What We Scan For
Family: Fedora Local Security Checks --> Category: infos

Fedora Core 2 2005-280: sharutils Vulnerability Scan


Vulnerability Scan Summary
Check for the version of the sharutils package

Detailed Explanation for this Vulnerability Test

The remote host is missing the patch for the advisory FEDORA-2005-280 (sharutils).

The sharutils package contains the GNU shar utilities, a set of tools
for encoding and decoding packages of files (in binary or text format)
in a special plain text format called shell archives (shar). This
format can be sent through e-mail (which can be problematic for
regular
binary files). The shar utility supports a wide range of capabilities
(compressing, uuencoding, splitting long files for multi-part
mailings, providing checksums), which make it very flexible at
creating shar files. After the files have been sent, the unshar tool
scans mail messages looking for shar files. Unshar automatically
strips off mail headers and introductory text and then unpacks the
shar files.

Install sharutils if you send binary files through e-mail.


* Thu Mar 31 2005 Than Ngo
4.2.1-18.1.FC2

- apply patch to fix multiple buffer overflows #152571
- apply patch to fix buffer overflow in handling of -o option,
CVE-2004-1772, #123230



Solution : http://www.fedoranews.org/blog/index.php?p=560
Threat Level: High

Click HERE for more information and discussions on this network vulnerability scan.

VSS, LLC.

P.O. Box 827051

Pembroke Pines, FL 33082-7051

Vulnerability Scanning Solutions, LLC.