Detections
Analytics

FreeBSD : phpBB session table exhaustion (a56a72bb-9f72-11d8-9585-0020ed76ef5a)

high Nessus Plugin ID 19061

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The includes/sessions.php unnecessarily adds session item into session table and therefore vulnerable to a denial-of-service attack.

Solution

Update the affected package.

See Also

https://marc.info/?l=bugtraq&m=108256462710010

http://www.nessus.org/u?67837036

Plugin Details

Severity: High

ID: 19061

File Name: freebsd_pkg_a56a72bb9f7211d895850020ed76ef5a.nasl

Version: 1.15

Type: local

Published: 7/13/2005

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:phpbb, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 5/6/2004

Vulnerability Publication Date: 3/5/2004