Debian Security Advisory DSA 367-1 (xtokkaetama) Network Vulnerability

Summary

The remote host is missing an update to xtokkaetama announced via advisory DSA 367-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20367-1

Insight

Another buffer overflow was discovered in xtokkaetama, involving the '-nickname' command line option. This vulnerability could be exploited by a local attacker to gain gid 'games'. For the current stable distribution (woody) this problem has been fixed in version 1.0b-6woody2. For the unstable distribution (sid) this problem is fixed in version 1.0b-9. We recommend that you update your xtokkaetama package.

Severity

Classification

CVE CVE-2003-0652

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 084-1 (gftp)
Debian Security Advisory DSA 1102-1 (pinball)
Debian Security Advisory DSA 020-1 (php4)
Debian Security Advisory DSA 094-1 (mailman)
Debian Security Advisory DSA 1119-1 (hiki)

Take action and discover your vulnerabilities