Nessus Plugin #14919
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA082] DSA-082-1 xvt
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-082-1 xvt
- Version:
- $Revision: 1.4 $
- Cve_id:
- -
- Bugtraq_id:
- 2964
- Xrefs:
- DSA:082
- Description:
Christophe Bailleux reported on bugtraq that Xvt is vulnerable to a
buffer overflow in its argument handling. Since Xvt is installed
setuid root, it was possible for a normal user to pass
carefully-crafted arguments to xvt so that xvt executed a root shell.
This problem has been fixed by the maintainer in version 2.1-13 of xvt
for Debian unstable and 2.1-13.0potato.1 for the stable Debian
GNU/Linux 2.2.
We recommend that you upgrade your xvt package immediately.
Solution : http://www.debian.org/security/2001/dsa-082
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.