Debian Security Advisory DSA 632-1 (linpopup) Network Vulnerability

Summary

The remote host is missing an update to linpopup announced via advisory DSA 632-1.

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20632-1

Insight

Stephen Dranger discovered a buffer overflow in linpopup, an X11 port of winpopup, running over Samba, that could lead to the execution of arbitrary code when displaying a maliciously crafted message. For the stable distribution (woody) this problem has been fixed in version 1.2.0-2woody1. For the unstable distribution (sid) this problem has been fixed in version 1.2.0-7. We recommend that you upgrade your linpopup package.

Severity

Classification

CVE CVE-2004-1282

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Debian Security Advisory DSA 1052-1 (cgiirc)
Debian Security Advisory DSA 045-1 (ntp)
Debian Security Advisory DSA 087-1 (wu-ftpd)
Debian Security Advisory DSA 026-1 (bind)
Debian Security Advisory DSA 1017-1 (kernel-source-2.6.8)

Take action and discover your vulnerabilities