Multiple Vendor mtr Vulnerability

Users of mtr should upgrade to version mtr-0.42 or later. An interim solution may be to remove the setuid bit. This will prevent non-root users from being able to gain any root privileges, although it will affect their use of mtr.

TurboLinux has issued a new package to fix this problem in versions 6.0.2 and prior.


Privacy Statement
Copyright 2010, SecurityFocus