Debian 2.2 DSA-012-1 Critical: Micq Remote Code Execution Threat
debian
January 22, 2001
A remote attacker may be able to sniff packets to the ICQ server to execute arbitrary code on the victim system.
Topics Covered
Summary
PkC has reported that there is a buffer overflow in sprintf() in micq
versions 0.4.6, that allows to a remote attacker able to sniff packets
to the ICQ server to execute arbitrary code on the victim system.
We recommend you upgrade your micq package immediately.
wget url
will fetch the file for you
dpkg -i file.deb
will install the referenced file.
You may use an automated update by adding the resources from the
footer to the proper configuration.
Debian GNU/Linux 2.2 alias potato
------------------------------------
Potato was released for the alpha, arm, i386, m68k, powerpc and sparc
architectures.
Source archives:
MD5 checksum: b564dd2d8e937611bd90d73096d4a138
MD5 checksum: ddc011d3509d593284bf9336e0a9f829
MD5 checksum: f86304bdbec4d1cf86fb991fc8355f39
Intel ia32 architecture:
MD5 checksum: b5a2d7327ffc35ab49a1e4f64c6f2567
Motorola 680x0 architecture:
MD5 checksum: a07906bae588eaec0b20974a8a871704
Sun Sparc architecture:
...
PREVIOUS
NEXT
Severity
critical
Lowest
Low
Medium
High
Critical
Package: micq
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!