|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200506-24] Heimdal: Buffer overflow vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Heimdal: Buffer overflow vulnerabilities
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200506-24
(Heimdal: Buffer overflow vulnerabilities)
It has been reported that the "getterminaltype" function of
Heimdal's telnetd server is vulnerable to buffer overflows.
Impact
A possible hacker could exploit this vulnerability to execute arbitrary
code with the permission of the telnetd server program.
Workaround
There is no known workaround at this time.
References:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2040
http://www.pdc.kth.se/heimdal/advisory/2005-06-20/
Solution:
All users should upgrade to the latest available version:
# emerge --sync
# emerge --ask --oneshot --verbose ">=app-crypt/heimdal-0.6.5"
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|
