Detections
Analytics
openSUSE 10 Security Update : moodle (moodle-4964)
medium Nessus Plugin ID 30181
Synopsis
The remote openSUSE host is missing a security update.Description
The install script of moodle is vulnerable to cross site scripting (XSS). This flaw is only exploitable if moodle isn't fully installed yet. Therefore it's unlikely to be much of a problem in practice. To actually exploit it an attacker would have to know about a person that is just about to install moodle (CVE-2008-0123).Solution
Update the affected moodle packages.Plugin Details
Severity: Medium
ID: 30181
File Name: suse_moodle-4964.nasl
Version: 1.9
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 2/5/2008
Updated: 1/14/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Low
Score: 3.8
CVSS v2
Risk Factor: Medium
Base Score: 4.3
Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N
Vulnerability Information
CPE: p-cpe:/a:novell:opensuse:moodle, p-cpe:/a:novell:opensuse:moodle-af, p-cpe:/a:novell:opensuse:moodle-ar, p-cpe:/a:novell:opensuse:moodle-be, p-cpe:/a:novell:opensuse:moodle-bg, p-cpe:/a:novell:opensuse:moodle-bs, p-cpe:/a:novell:opensuse:moodle-ca, p-cpe:/a:novell:opensuse:moodle-cs, p-cpe:/a:novell:opensuse:moodle-da, p-cpe:/a:novell:opensuse:moodle-de, p-cpe:/a:novell:opensuse:moodle-de_du, p-cpe:/a:novell:opensuse:moodle-el, p-cpe:/a:novell:opensuse:moodle-es, p-cpe:/a:novell:opensuse:moodle-et, p-cpe:/a:novell:opensuse:moodle-eu, p-cpe:/a:novell:opensuse:moodle-fa, p-cpe:/a:novell:opensuse:moodle-fi, p-cpe:/a:novell:opensuse:moodle-fr, p-cpe:/a:novell:opensuse:moodle-ga, p-cpe:/a:novell:opensuse:moodle-gl, p-cpe:/a:novell:opensuse:moodle-he, p-cpe:/a:novell:opensuse:moodle-hi, p-cpe:/a:novell:opensuse:moodle-hr, p-cpe:/a:novell:opensuse:moodle-hu, p-cpe:/a:novell:opensuse:moodle-id, p-cpe:/a:novell:opensuse:moodle-is, p-cpe:/a:novell:opensuse:moodle-it, p-cpe:/a:novell:opensuse:moodle-ja, p-cpe:/a:novell:opensuse:moodle-ka, p-cpe:/a:novell:opensuse:moodle-km, p-cpe:/a:novell:opensuse:moodle-kn, p-cpe:/a:novell:opensuse:moodle-ko, p-cpe:/a:novell:opensuse:moodle-lt, p-cpe:/a:novell:opensuse:moodle-lv, p-cpe:/a:novell:opensuse:moodle-mi_tn, p-cpe:/a:novell:opensuse:moodle-ms, p-cpe:/a:novell:opensuse:moodle-nl, p-cpe:/a:novell:opensuse:moodle-nn, p-cpe:/a:novell:opensuse:moodle-no, p-cpe:/a:novell:opensuse:moodle-pl, p-cpe:/a:novell:opensuse:moodle-pt, p-cpe:/a:novell:opensuse:moodle-ro, p-cpe:/a:novell:opensuse:moodle-ru, p-cpe:/a:novell:opensuse:moodle-sk, p-cpe:/a:novell:opensuse:moodle-sl, p-cpe:/a:novell:opensuse:moodle-so, p-cpe:/a:novell:opensuse:moodle-sq, p-cpe:/a:novell:opensuse:moodle-sr, p-cpe:/a:novell:opensuse:moodle-sv, p-cpe:/a:novell:opensuse:moodle-th, p-cpe:/a:novell:opensuse:moodle-tl, p-cpe:/a:novell:opensuse:moodle-tr, p-cpe:/a:novell:opensuse:moodle-uk, p-cpe:/a:novell:opensuse:moodle-vi, p-cpe:/a:novell:opensuse:moodle-zh_cn, cpe:/o:novell:opensuse:10.2, cpe:/o:novell:opensuse:10.3
Required KB Items: Host/local_checks_enabled, Host/SuSE/release, Host/SuSE/rpm-list
Patch Publication Date: 1/31/2008
Reference Information
CVE: CVE-2008-0123
CWE: 79