Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA1114] DSA-1114-1 hashcash


Vulnerability Assessment Details

[DSA1114] DSA-1114-1 hashcash

Vulnerability Assessment Summary
DSA-1114-1 hashcash

Detailed Explanation for this Vulnerability Assessment

Andreas Seltenreich discovered a buffer overflow in hashcash, a
postage payment scheme for email that is based on hash calculations,
which could permit attackers to execute arbitrary code via specially
crafted entries.
For the stable distribution (sarge) this problem has been fixed in
version 1.17-1sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 1.21-1.
We recommend that you upgrade your hashcash package.


Solution : http://www.debian.org/security/2006/dsa-1114
Network Security Threat Level: High

Networks Security ID: 18659

Vulnerability Assessment Copyright: This script is (C) 2007 Michel Arboi

Cables, Connectors

Matched Pair Intel Xeon E5-2680 v2 2.80GHz 25MB 8GT/s SR1A6 LGA2011 Processors
$520.0
Matched Pair Intel Xeon E5-2680 v2 2.80GHz 25MB 8GT/s SR1A6 LGA2011 Processors pictureSUPERMICRO X8DTH-6F LGA1366 XEON EATX Motherboard
$249.99
SUPERMICRO X8DTH-6F LGA1366 XEON EATX Motherboard pictureApple Mac Pro Intel Xeon 2.66Ghz 10GB RAM NVIDIA CS6 Loaded w/video&editing apps
$450.0
Apple Mac Pro Intel Xeon 2.66Ghz 10GB RAM NVIDIA CS6 Loaded w/video&editing apps pictureDell Precision T3600 Tower PC Intel Xeon Quad Core 3.60GHz 4GB 250GB Refurbished
$374.99
Dell Precision T3600 Tower PC Intel Xeon Quad Core 3.60GHz 4GB 250GB Refurbished picture


Discussions

No Discussions have been posted on this vulnerability.