Slackware Advisory SSA:2005-201-02 Emacs Movemail POP Utility Network Vulnerability

Summary

The remote host is missing an update as announced via advisory SSA:2005-201-02.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=SSA:2005-201-02

Insight

New emacs packages are available for Slackware 10.1 and -current to a security issue with the movemail utility for retrieving mail from a POP mail server. If used to connect to a malicious POP server, it is possible for the server to cause the execution of arbitrary code as the user running emacs.

Severity

Classification

CVSS Base Score: 6.5
AV:N/AC:L/Au:S/C:P/I:P/A:P

Related Vulnerabilities

Slackware Advisory SSA:2005-201-02 emacs movemail POP utility
Slackware Advisory SSA:2004-202-01 PHP
Slackware Advisory SSA:2006-257-01 bind DoS
Slackware Advisory SSA:2006-357-05 xine-lib
Slackware Advisory SSA:2007-085-01 mozilla-firefox

Take action and discover your vulnerabilities