Debian Security Advisory DSA 217-1 (typespeed) Network Vulnerability

Summary

The remote host is missing an update to typespeed announced via advisory DSA 217-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20217-1

Insight

A problem has been discovered in the typespeed, a game that lets you measure your typematic speed. By overflowing a buffer a local attacker could execute arbitrary commands under the group id games. For the current stable distribution (woody) this problem has been fixed in version 0.4.1-2.1. For the old stable distribution (potato) this problem has been fixed in version 0.4.0-5.1. For the unstable distribution (sid) this problem has been fixed in version 0.4.2-2. We recommend that you upgrade your typespeed package.

Severity

Classification

CVE CVE-2002-1389

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 092-1 (wmtv)
Debian Security Advisory DSA 020-1 (php4)
Debian Security Advisory DSA 1148-1 (gallery)
Debian Security Advisory DSA 077-1 (squid)
Debian Security Advisory DSA 1152-1 (trac)

Take action and discover your vulnerabilities