Mandrake Linux Security Advisory : speedtouch (MDKSA-2004:130)
High Nessus Plugin ID 15698
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionThe Speedtouch USB driver contains a number of format string vulnerabilities due to improperly made syslog() system calls. These vulnerabilities can be abused by a local user to potentially allow the execution of arbitrary code with elevated privileges.
The updated packages have been patched to prevent this problem.
SolutionUpdate the affected speedtouch package.