Debian Security Advisory DSA 1187-1 (migrationtools) Network Vulnerability

Summary

The remote host is missing an update to migrationtools announced via advisory DSA 1187-1. Jason Hoover discovered that migrationtools, a collection of scripts to migrate user data to LDAP creates several temporary files insecurely, which might lead to denial of service through a symlink attack.

Solution

For the stable distribution (sarge) this problem has been fixed in version 46-1sarge1. For the unstable distribution (sid) this problem has been fixed in version 46-2.1. We recommend that you upgrade your migrationtools package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201187-1

Severity

Classification

CVE CVE-2006-0512

CVSS	Base Score: 2.1 AV:L/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Debian Security Advisory DSA 2650-2 (libvirt - files and device nodes ownership change to kvm group)
Debian Security Advisory DSA 2214-1 (ikiwiki)
Debian Security Advisory DSA 1420-1 (zabbix)
Debian Security Advisory DSA 1518-1 (backup-manager)
Debian Security Advisory DSA 2661-1 (xorg-server - information disclosure)

Take action and discover your vulnerabilities