| VID |
23004 |
| Severity |
40 |
| Port |
42800 |
| Protocol |
TCP |
| Class |
Libgtopd |
| Detailed Description |
The libgtop_daemon running on port 42800 is vulnerable to a format string attack which may allow an attacker to gain a shell on the relevant host (with the privileges of 'nobody').
libgtop_daemon is a GNOME daemon used to monitor process running on a remote system. All versions of libgtop_daemon prior to v1.0.13 are vulnerable.
* References:
http://www.iss.net/security_center/static/7608.php
http://archives.neohapsis.com/archives/bugtraq/2001-11/0218.html |
| Recommendation |
Upgrade to the latest version of libgtop_daemon. libgtop_daemon release 1.0.13 has been made to correct this issue. Here is a link where you can download it :
ftp://ftp.gnome.org/pub/GNOME/stable/sources/libgtop/libgtop-1.0.13.tar.gz |
| Related URL |
CVE-2001-0927 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
