Debian Security Advisory DSA 467-1 (ecartis) Network Vulnerability

Summary

The remote host is missing an update to ecartis announced via advisory DSA 467-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20467-1

Insight

Timo Sirainen discovered two vulnerabilities in ecartis, a mailing list manager. - CVE-2003-0781 - Failure to validate user input could lead to disclosure of mailing list passwords - CVE-2003-0782 - Multiple buffer overflows For the stable distribution (woody) these problems have been fixed in version 0.129a+1.0.0-snap20020514-1.2. For the unstable distribution (sid) these problems have been fixed in version 1.0.0+cvs.20030911. We recommend that you update your ecartis package.

Severity

Classification

CVE CVE-2003-0781, CVE-2003-0782

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 009-1 (stunnel)
Debian Security Advisory DSA 013-1 (mysql)
Debian Security Advisory DSA 1030-1 (moodle)
Debian Security Advisory DSA 1026-1 (sash)
Debian Security Advisory DSA 1045-1 (openvpn)

Take action and discover your vulnerabilities