Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> Debian Local Security Checks >> [DSA385] DSA-385-1 hztty


Vulnerability Assessment Details

[DSA385] DSA-385-1 hztty

Vulnerability Assessment Summary
DSA-385-1 hztty

Detailed Explanation for this Vulnerability Assessment

Jens Steube reported a pair of buffer overflow vulnerabilities in
hztty, a program to translate Chinese character encodings in a
terminal session. These vulnerabilities could be exploited by a local
attacker to gain root rights on a system where hztty is installed.
Additionally, hztty had been incorrectly installed setuid root, when
it only requires the rights of group utmp. This has also been
corrected in this update.
For the stable distribution (woody) this problem has been fixed in
version 2.0-5.2woody1.
For the unstable distribution (sid) this problem will be fixed in
version 2.0-6.
We recommend that you update your hztty package.


Solution : http://www.debian.org/security/2003/dsa-385
Network Security Threat Level: High

Networks Security ID: 8656

Vulnerability Assessment Copyright: This script is (C) 2005 Michel Arboi

Cables, Connectors

Vintage Mac Apple Keyboard M0110
$75.0
Vintage Mac Apple Keyboard M0110 pictureVintage Macally Ikey USB Keyboard Mac Graphite 105 Keys Tested & Works Well Kept
$9.99
Vintage Macally Ikey USB Keyboard Mac Graphite 105 Keys Tested & Works Well Kept pictureVINTAGE APPLE TEAL BLUE GREEN MOUSE PUCK MACINTOSH iMAC G3 MAC M4848
$20.0
VINTAGE APPLE TEAL BLUE GREEN MOUSE PUCK MACINTOSH iMAC G3 MAC M4848 pictureAPPLE computer APPLE POWER CHAMPIONSHIP vintage pin badge Mac Macintosh
$69.99
APPLE computer APPLE POWER CHAMPIONSHIP vintage pin badge Mac Macintosh picture


Discussions

No Discussions have been posted on this vulnerability.