|
Family: Ubuntu Local Security Checks --> Category: infos
USN104-1 : sharutils vulnerability Vulnerability Scan
Vulnerability Scan Summary sharutils vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
These remote packages are missing security patches :
- sharutils
- sharutils-doc
Description :
Joey Hess discovered that "unshar" created temporary files in an
insecure manner. This could allow a symbolic link attack to create or
overwrite arbitrary files with the rights of the user invoking the
program.
Solution :
Upgrade to :
- sharutils-4.2.1-10ubuntu0.2 (Ubuntu 4.10)
- sharutils-doc-4.2.1-10ubuntu0.2 (Ubuntu 4.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|