Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Debian Security Advisory DSA 079-1 (uucp)

Information

Severity

Severity

High

Family

Family

Debian Local Security Checks

CVSSv2 Base

CVSSv2 Base

7.2

CVSSv2 Vector

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Solution Type

Solution Type

Vendor Patch

Created

Created

16 years ago

Modified

Modified

6 years ago

Share

Summary

The remote host is missing an update to uucp announced via advisory DSA 079-1.

Insight

Insight

zen-parse has found a problem with Taylor UUCP as distributed with many GNU/Linux distributions. It was possible to make `uux' execute `uucp' with malicious commandline arguments which gives an attacker access to files owned by uid/gid uucp. This problem has been fixed in version of 1.06.1-11potato1 for Debian GNU/Linux 2.2 by using a patch that RedHat has provided. We recommend that you upgrade your uucp package immediately.

Solution

Solution

https://secure1.securityspace.com/smysecure/catid.html?in=DSA%20079-1

Common Vulnerabilities and Exposures (CVE)