Nessus Plugin #15299
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
[DSA462] DSA-462-1 xitalk
- Family:
- Debian Local Security Checks
- Category:
- infos
- Copyright:
- This script is (C) 2005 Michel Arboi
- Summary:
- DSA-462-1 xitalk
- Version:
- $Revision: 1.5 $
- Cve_id:
- CAN-2004-0151
- Bugtraq_id:
- 9851
- Xrefs:
- DSA:462
- Description:
Steve Kemp from the Debian Security Audit Project discovered a problem in
xitalk, a talk intercept utility for the X Window System. A local
user can exploit this problem and execute arbitrary commands under the
GID utmp. This could be used by an attacker to remove traces from the
utmp file.
For the stable distribution (woody) this problem has been fixed in
version 1.1.11-9.1woody1.
For the unstable distribution (sid) this problem will be fixed soon.
We recommend that you upgrade your xitalk package.
Solution : http://www.debian.org/security/2004/dsa-462
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.