Ubuntu USN-845-1 (pan) Network Vulnerability

Summary

The remote host is missing an update to pan announced via advisory USN-845-1.

Solution

The problem can be corrected by upgrading your system to the following package versions: Ubuntu 8.04 LTS: pan 0.132-2ubuntu2.1 In general, a standard system upgrade is sufficient to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-845-1

Insight

Pavel Polischouk discovered that Pan incorrectly handled certain data structures. If a user were tricked into viewing malicious nntp data, a remote attacker could cause a denial of service or possibly execute arbitrary code with the privileges of the user invoking the program.

Severity

Classification

CVE CVE-2008-2363

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Ubuntu Update for djvulibre USN-2056-1
Ubuntu Update for cups, cupsys vulnerability USN-1012-1
Ubuntu Update for bind9 USN-2503-1
Ubuntu Update for clamav USN-2488-2
Ubuntu Update for dhcp3 vulnerability USN-803-2

Take action and discover your vulnerabilities