|Category:||Red Hat Local Security Checks|
|Title:||RedHat Security Advisory RHSA-2003:038|
|Summary:||Redhat Security Advisory RHSA-2003:038|
The remote host is missing updates announced in
Internet Message (IM) consists of a set of user interface commands and
backend Perl5 libraries to integrate email and the NetNews user interface.
These commands are designed to be used from both the Mew mail reader for
Emacs and the command line.
A vulnerability has been discovered by Tatsuya Kinoshita in the way two IM
utilities create temporary files. By anticipating the names used to
create files and directories stored in the /tmp directory, it may be
possible for a local attacker to corrupt or modify data as another user.
Users of IM are advised to install these packages which contain a
backported patch to correct these issues.
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date
Risk factor : Medium
BugTraq ID: 6307|
Common Vulnerability Exposure (CVE) ID: CVE-2002-1395
Debian Security Information: DSA-202 (Google Search)
|Copyright||Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com|
|This is only one of 38907 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.