Test ID:	1.3.6.1.4.1.25623.1.0.53299
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-615-1)
Summary:	The remote host is missing an update for the Debian 'debmake' package(s) announced via the DSA-615-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'debmake' package(s) announced via the DSA-615-1 advisory. Vulnerability Insight: Javier Fernandez-Sanguino Pena from the Debian Security Audit Project noticed that the debstd script from debmake, a deprecated helper package for Debian packaging, created temporary directories in an insecure manner. This can be exploited by a malicious user to overwrite arbitrary files owned by the victim. For the stable distribution (woody) this problem has been fixed in version 3.6.10.woody.1. For the unstable distribution (sid) this problem has been fixed in version 3.7.7. We recommend that you upgrade your debmake package. Affected Software/OS: 'debmake' package(s) on Debian 3.0. Solution: Please install the updated package(s). CVSS Score: 2.1 CVSS Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1179 BugTraq ID: 12078 http://www.securityfocus.com/bid/12078 Debian Security Information: DSA-615 (Google Search) http://www.debian.org/security/2004/dsa-615 http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2004-12/0645.html http://secunia.com/advisories/13633/ XForce ISS Database: debmake-debstd-symlink(18646) https://exchange.xforce.ibmcloud.com/vulnerabilities/18646
Copyright	Copyright (C) 2008 Greenbone AG

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.