Test ID:	1.3.6.1.4.1.25623.1.0.50999
Category:	Red Hat Local Security Checks
Title:	RedHat Security Advisory RHSA-2003:038
Summary:	NOSUMMARY
Description:	Description: The remote host is missing updates announced in advisory RHSA-2003:038. Internet Message (IM) consists of a set of user interface commands and backend Perl5 libraries to integrate email and the NetNews user interface. These commands are designed to be used from both the Mew mail reader for Emacs and the command line. A vulnerability has been discovered by Tatsuya Kinoshita in the way two IM utilities create temporary files. By anticipating the names used to create files and directories stored in the /tmp directory, it may be possible for a local attacker to corrupt or modify data as another user. Users of IM are advised to install these packages which contain a backported patch to correct these issues. Solution: Please note that this update is available via Red Hat Network. To use Red Hat Network, launch the Red Hat Update Agent with the following command: up2date http://rhn.redhat.com/errata/RHSA-2003-038.html http://www.debian.org/security/2002/dsa-202 Risk factor : Medium CVSS Score: 2.1
Cross-Ref:	BugTraq ID: 6307 Common Vulnerability Exposure (CVE) ID: CVE-2002-1395 http://www.securityfocus.com/bid/6307 Debian Security Information: DSA-202 (Google Search) http://www.debian.org/security/2002/dsa-202 http://www.redhat.com/support/errata/RHSA-2003-039.html http://secunia.com/advisories/8166 http://secunia.com/advisories/8242 http://www.iss.net/security_center/static/10767.php http://www.iss.net/security_center/static/10766.php
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.