Ubuntu Security Notice (C) 2007-2015 Canonical, Inc. / NASL script (C) 2007-2015 Tenable Network Security, Inc.
The remote Ubuntu host is missing one or more security-related patches.
tricking a user into opening a malicious email, an attacker could
execute arbitrary code with the user's privileges. Please note that
recommended to enable it. (CVE-2007-3734, CVE-2007-3735,
Jesper Johansson discovered that spaces and double-quotes were not
correctly handled when launching external programs. In rare
configurations, after tricking a user into opening a malicious email,
an attacker could execute helpers with arbitrary arguments with the
user's privileges. (CVE-2007-3670, CVE-2007-3845).
Update the affected packages.
Risk factor :
High / CVSS Base Score : 9.3
CVSS Temporal Score : 8.1
Public Exploit Available : true
Family: Ubuntu Local Security Checks
Nessus Plugin ID: 28107 ()
Bugtraq ID: 2483725142
CVE ID: CVE-2007-3670CVE-2007-3734CVE-2007-3735CVE-2007-3844CVE-2007-3845
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.