Test ID:	1.3.6.1.4.1.25623.1.0.56157
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-240-1 (bogofilter)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to bogofilter announced via advisory USN-240-1. A security issue affects the following Ubuntu releases: Ubuntu 5.10 (Breezy Badger) The following packages are affected: bogofilter A buffer overflow was found in bogofilter's character set conversion handling. Certain invalid UTF-8 character sequences caused an invalid memory access. By sending a specially crafted email, a remote attacker could exploit this to crash bogofilter or possibly even execute arbitrary code with bogofilter's privileges. Solution: The problem can be corrected by upgrading the affected package to version 0.95.2-1ubuntu1.1. In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-240-1 Risk factor : High CVSS Score: 7.5
Cross-Ref:	BugTraq ID: 16171 Common Vulnerability Exposure (CVE) ID: CVE-2005-4591 http://www.securityfocus.com/bid/16171 http://secunia.com/advisories/18352 http://secunia.com/advisories/18427 http://secunia.com/advisories/18717 SuSE Security Announcement: SUSE-SR:2006:003 (Google Search) http://lists.suse.com/archive/suse-security-announce/2006-Feb/0001.html https://usn.ubuntu.com/240-1/ http://www.vupen.com/english/advisories/2006/0100 XForce ISS Database: bogofilter-unicode-bo(24118) https://exchange.xforce.ibmcloud.com/vulnerabilities/24118
Copyright	Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.