Mandriva Linux Security Advisory : nut (MDVSA-2012:087)
High Nessus Plugin ID 59362
SynopsisThe remote Mandriva Linux host is missing one or more security updates.
DescriptionA vulnerability has been discovered and corrected in nut :
Buffer overflow in the addchar function in common/parseconf.c in upsd in Network UPS Tools (NUT) before 2.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (electric-power outage) via a long string containing non-printable characters (CVE-2012-2944).
The updated packages have been patched to correct this issue.
SolutionUpdate the affected packages.