|
Family: Ubuntu Local Security Checks --> Category: infos
USN239-1 : libapache2-mod-auth-pgsql vulnerability Vulnerability Scan
Vulnerability Scan Summary libapache2-mod-auth-pgsql vulnerability
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote package "libapache2-mod-auth-pgsql" is missing a security patch.
Description :
Several format string vulnerabilities were discovered in the error
logging handling. By sending specially crafted user names, an
unauthenticated remote attacker could exploit this to crash the Apache
server or possibly even execute arbitrary code with the rights of
Apache (user 'www-data').
Solution :
Upgrade to :
- libapache2-mod-auth-pgsql-2.0.2b1-6ubuntu0.1 (Ubuntu 5.10)
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|