Mandriva Linux Security Advisory : pan (MDVSA-2008:201)
High Nessus Plugin ID 37431
SynopsisThe remote Mandriva Linux host is missing a security update.
DescriptionPavel Polischouk found a boundary error in the PartsBatch class in the Pan newsreader when processing .nzb files, which could allow remote attackers to cause a denial of serice (application crash) or possibly execute arbitrary code via a crafted .nzb file (CVE-2008-2363).
The updated packages have been patched to prevent this issue.
SolutionUpdate the affected pan package.