DSA-1848-1 znc -- directory traversal| ID: oval:org.secpod.oval:def:600498 | Date: (C)2011-05-13 (M)2022-10-10 |
| Class: PATCH | Family: unix |
It was discovered that znc, an IRC proxy, did not properly process certain DCC requests, allowing attackers to upload arbitrary files. For the old stable distribution , this problem has been fixed in version 0.045-3+etch3. For the stable distribution , this problem has been fixed in version 0.058-2+lenny3. For the unstable distribution , this problem has been fixed in version 0.074-1. We recommend that you upgrade your znc package.
| Platform: |
| Debian 5.0 |
| Debian 4.0 |
