FreeBSD : nfsen -- remote command execution (70372cda-6771-11de-883a-00e0815b8da8)

high Nessus Plugin ID 39594

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

nfsen reports :

Due to double input checking, a remote command execution security bug exists in all NfSen versions 1.3 and 1.3.1. Users are requested to update to nfsen-1.3.2.

Solution

Update the affected package.

See Also

https://sourceforge.net/p/legacy_/forum/forum.php?forum_id=967583

http://www.nessus.org/u?b959a70b

Plugin Details

Severity: High

ID: 39594

File Name: freebsd_pkg_70372cda677111de883a00e0815b8da8.nasl

Version: 1.10

Type: local

Published: 7/3/2009

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:nfsen, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 7/3/2009

Vulnerability Publication Date: 6/18/2009