Mandriva Update For Html2ps MDVSA-2012:161 (html2ps) Network Vulnerability

Solution

Please Install the Updated Packages.

Insight

A vulnerability has been found and corrected in html2ps: Directory traversal vulnerability in html2ps before 1.0b7 allows remote attackers to read arbitrary files via directory traversal sequences in SSI directives (CVE-2009-5067). The updated packages have been upgraded to the 1.0b7 version which is not affected by this issue.

Affected

html2ps on Mandriva Linux 2011.0

Severity

Classification

CVE CVE-2009-5067

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Mandrake Security Advisory MDVSA-2009:193 (ruby)
Mandrake Security Advisory MDVSA-2009:129 (file)
Mandrake Security Advisory MDVSA-2009:156 (net-snmp)
Mandrake Security Advisory MDVSA-2009:177 (ruby)
Mandrake Security Advisory MDVSA-2009:038 (blender)

Mandriva Update for html2ps MDVSA-2012:161 (html2ps)

Take action and discover your vulnerabilities