SuSE announces that the packages tnef < 0-124 and dhclient < 2.0 are vulnerable to remote attacks. tnef CAN be used to scan e-mail going to non UNIX systems (e.g. for the Love Worm) when attachments are packed in a Microsoft proprietary way. Unfortunately, tnef allows path specification. And dhclient is subject to a remote root compromise. In theory, not only SuSE is subject to that problem, so you should check your distribution vendor for this (upgrades for Debian slink have already been made, at least for dhclient). -- Pour poster une annonce: [EMAIL PROTECTED]
