Debian Security Advisory DSA 265-1 (bonsai)

The remote host is missing an update to bonsai announced via advisory DSA 265-1. OpenVAS Vulnerability Test $Id: deb2651.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 265-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

CVE-2003-0152

Unknown vulnerability in bonsai Mozilla CVS query tool allows remote attackers to execute arbitrary commands as the www-data user...

CVE-2003-0152

CVE-2003-0152 concerns the Bonsai Mozilla CVS query tool CGI, allowing remote execution of arbitrary commands as www-data. Public records (Debian DSA-265) show fixes in Bonsai updates (e.g., bonsai 1.3+cvs20020224-1woody1 for woody; later fixes for sid). OpenVAS/Nessus entries corroborate multipl...