Mandrake Linux Security Advisory : minicom (MDKSA-2001:051)
High Nessus Plugin ID 13869
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionSeveral format string vulnerabilities exist in the minicom program.
These bugs can be exploited to obtain group uucp privilege. A simple fix is to simply remove the setgid bit on /usr/bin/minicom, however these new packages introduce some fixes for the vulnerabilities through a patch from Red Hat, and also strip the setgid bit.
SolutionUpdate the affected minicom package.