Test Kennung:	1.3.6.1.4.1.25623.1.0.51407
Kategorie:	Conectiva Local Security Checks
Titel:	Conectiva Security Advisory CLA-2003:620
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host is missing updates announced in advisory CLA-2003:620. The man package, which includes the utilities man, apropos, and whatis is used to read most of the documentation available on a Linux system. Jack Lloyd found[1] a local vulnerability in the man utility. Because of a problem with a value returned by the my_xsprintf() function, man could try to execute a program called unsafe when reading a manpage file with certain characteristics. If an attacker can put a malicious executable file called unsafe in the system PATH and let a user open a specially created manpage, it could run arbitrary commands with the privileges of this user. Solution: The apt tool can be used to perform RPM package upgrades by running 'apt-get update' followed by 'apt-get upgrade' http://www.securityfocus.com/archive/1/314700 http://www.securityspace.com/smysecure/catid.html?in=CLA-2003:620 http://distro.conectiva.com.br/atualizacoes/index.php?id=a&anuncio=002003 Risk factor : High
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.