Vulnerability Bulletins |
Salto de restricciones en Enemies-of-carlotta |
|
Vulnerability classification |
|
Property | Value |
Confidence level | Oficial |
Impact | Integridad |
Dificulty | Experto |
Required attacker level | Acceso remoto sin cuenta a un servicio exotico |
System information |
|
Property | Value |
Affected manufacturer | GNU/Linux |
Affected software | enemies-of-carlotta |
Description |
|
Se ha descubierto una vulnerabilidad en enemies-of-carlotta, un gestor de listas de correo. La vulnerabilidad reside en que no se comprueban correctamente las direcciones de correo electrónico antes de pasarlos al sistema. Se desconoce el impacto de esta vulnerabilidad. |
|
Solution |
|
Actualización de software Debian (DSA 1236-1) Source http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3.orig.tar.gz http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3-1sarge1.dsc http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3-1sarge1.diff.gz Architecture independent http://security.debian.org/pool/updates/main/e/enemies-of-carlotta/enemies-of-carlotta_1.0.3-1sarge1_all.deb |
|
Standar resources |
|
Property | Value |
CVE | CVE-2006-5875 |
BID | |
Other resources |
|
Debian Security Advisory (DSA 1236-1) http://lists.debian.org/debian-security-announce/debian-security-announce-2006/msg00336.html |
Version history |
||
Version | Comments | Date |
1.0 | Aviso emitido | 2006-12-15 |