Debian Security Advisory DSA 632-1 (linpopup) Network Vulnerability

Summary

The remote host is missing an update to linpopup announced via advisory DSA 632-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20632-1

Insight

Stephen Dranger discovered a buffer overflow in linpopup, an X11 port of winpopup, running over Samba, that could lead to the execution of arbitrary code when displaying a maliciously crafted message. For the stable distribution (woody) this problem has been fixed in version 1.2.0-2woody1. For the unstable distribution (sid) this problem has been fixed in version 1.2.0-7. We recommend that you upgrade your linpopup package.

Severity

Classification

CVE CVE-2004-1282
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1067-1 (kernel 2.4.16)
Debian Security Advisory DSA 1052-1 (cgiirc)
Debian Security Advisory DSA 033-1 (analog)
Debian Security Advisory DSA 058-1 (exim)
Debian Security Advisory DSA 014-1 (splitvt)

Take action and discover your vulnerabilities