Debian Security Advisory DSA 369-1 (zblast) Network Vulnerability

Summary

The remote host is missing an update to zblast announced via advisory DSA 369-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20369-1

Insight

Steve Kemp discovered a buffer overflow in zblast-svgalib, when saving the high score file. This vulnerability could be exploited by a local user to gain gid 'games', if they can achieve a high score. For the current stable distribution (woody) this problem has been fixed in version 1.2pre-5woody2. For the unstable distribution (sid) this problem is fixed in version 1.2.1-7. We recommend that you update your zblast package.

Severity

Classification

CVE CVE-2003-0613

CVSS	Base Score: 4.6 AV:L/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Debian Security Advisory DSA 1061-1 (popfile)
Debian Security Advisory DSA 1080-1 (dovecot)
Debian Security Advisory DSA 1098-1 (horde3)
Debian Security Advisory DSA 1025-1 (dia)
Debian Security Advisory DSA 1006-1 (wzdftpd)

Take action and discover your vulnerabilities