This script is Copyright (C) 2005-2014 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
Several scripting vulnerabilities were discovered and corrected in
or page allows an attacker to steal or modify sensitive information
from other sites. The user could be convinced to drag obscurred links
in the context of a game or even a fake scrollbar. If the user could
be convinced to drag two links in sequence into a separate window (not
frame) the attacker would be able to run arbitrary programs.
clipboard, stealing any sensitive data the user might have copied.
enhanced abilities could construct the request in a way that led to a
confusing grant dialog, possibly fooling the user into thinking the
privilege requested was inconsequential while actually obtaining
explicit permission to run and install software. Workaround: Never
grant enhanced abilities of any kind to untrusted web pages.
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 5.1
Family: FreeBSD Local Security Checks
Nessus Plugin ID: 19087 (freebsd_pkg_b2e6d1d6133911d9bc4a000c41e2cdad.nasl)
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now