Summary
The remote host is missing an update to module-assistant announced via advisory DSA 867-1.
Eduard Bloch discovered that a rule file in module-assistant, a tool to ease the creation of module packages, creates a temporary file in an insecure fashion. It is usually executed from other packages as well.
The old stable distribution (woody) does not contain a module-assistant package.
Solution
For the stable distribution (sarge) this problem has been fixed in version 0.9sarge1.
For the unstable distribution (sid) this problem has been fixed in version 0.9.10.
We recommend that you upgrade your module-assistant package.
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20867-1
Severity
Classification
-
CVE CVE-2005-3121 -
CVSS Base Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N
Related Vulnerabilities