|Category:||Debian Local Security Checks|
|Title:||Debian Security Advisory DSA 1507-1 (turba2)|
|Summary:||Debian Security Advisory DSA 1507-1 (turba2)|
|Description:||The remote host is missing an update to turba2|
announced via advisory DSA 1507-1.
Peter Paul Elfferich discovered that turba2, a contact management component
for horde framework did not correctly check access rights before allowing
users to edit addresses. This could result in valid users being able to
alter private address records.
For the stable distribution (etch), this problem has been fixed in version
For the old stable distribution (sarge), this problem has been fixed in
For the unstable distribution (sid), this problem has been fixed in version
We recommend that you upgrade your turba2 package.
Common Vulnerability Exposure (CVE) ID: CVE-2008-0807|
Debian Security Information: DSA-1507 (Google Search)
BugTraq ID: 27844
|Copyright||Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com|
|This is only one of 40246 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.