|Category:||Ubuntu Local Security Checks|
|Title:||Ubuntu 4.10 USN-13-1 (groff utility)|
|Summary:||Ubuntu 4.10 USN-13-1 (groff utility)|
The remote host is missing an update to groff utility
announced via advisory USN-13-1.
Recently, Trustix Secure Linux discovered a vulnerability in the groff
package. The utility 'groffer' created a temporary directory in an
insecure way, which allowed exploitation of a race condition to create
or overwrite files with the privileges of the user invoking the
The following packages are affected: groff
The problem can be corrected by upgrading the affected package to
version 18.104.22.168-1ubuntu0.1. In general, a standard system upgrade
is sufficient to effect the necessary changes.
Risk factor : Medium
BugTraq ID: 11287|
Common Vulnerability Exposure (CVE) ID: CVE-2004-0969
XForce ISS Database: script-temporary-file-overwrite(17583)
|Copyright||Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com|
|This is only one of 58880 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.