Debian Security Advisory DSA 1190-1 (maxdb-7.5.00)

Summary
The remote host is missing an update to maxdb-7.5.00 announced via advisory DSA 1190-1. Oliver Karow discovered that the WebDBM frontend of the MaxDB database performs insufficient sanitising of requests passed to it, which might lead to the execution of arbitrary code.
Solution
For the stable distribution (sarge) this problem has been fixed in version 7.5.00.24-4. For the unstable distribution (sid) this problem will be fixed soon. We recommend that you upgrade your maxdb-7.5.00 package. https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201190-1