This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.
The remote Debian host is missing a security-related update.
Peter Vreugdenhil discovered that awstats, a featureful web server log
analyser, passes user-supplied data to an eval() function, allowing
remote attackers to execute arbitrary Perl commands.
See also :
Upgrade the awstats package.
The old stable distribution (woody) is not affected by this problem.
For the stable distribution (sarge) this problem has been fixed in
Risk factor :
Medium / CVSS Base Score : 5.0
Family: Debian Local Security Checks
Nessus Plugin ID: 22758 (debian_DSA-892.nasl)
CVE ID: CVE-2005-1527
Upgrade to Nessus Professional today!
Start your free Nessus Cloud trial now!
Begin Free Trial
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.