Nessus Plugin #15123
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA286] DSA-286-1 gs-common
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2004 Michel Arboi
- Summary:
- DSA-286-1 gs-common
- Version:
- $Revision: 1.4 $
- Cve_id:
- CAN-2003-0207
- Bugtraq_id:
- 7337
- Xrefs:
- DSA:286
- Description:
Paul Szabo discovered insecure creation of a temporary file in
ps2epsi, a script that is distributed as part of gs-common which
contains common files for different Ghostscript releases. ps2epsi uses
a temporary file in the process of invoking ghostscript. This file
was created in an insecure fashion, which could allow a local attacker
to overwrite files owned by a user who invokes ps2epsi.
For the stable distribution (woody) this problem has been fixed in
version 0.3.3.0woody1.
The old stable distribution (potato) is not affected by this problem.
For the unstable distribution (sid) this problem has been fixed in
version 0.3.3.1.
We recommend that you upgrade your gs-common package.
Solution : http://www.debian.org/security/2003/dsa-286
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.