FreeBSD : twiki -- multiple vulnerabilities (f98dea27-d687-11dd-abd1-0050568452ac)

This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.

Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Marc Schoenefeld and Steve Milner of RedHat SRT and Peter Allor of IBM
ISS report :

XSS vulnerability with URLPARAM variable

SEARCH variable allows arbitrary shell command execution

See also :

Solution :

Update the affected package.

Risk factor :

Critical / CVSS Base Score : 10.0
CVSS Temporal Score : 8.3
Public Exploit Available : true

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 35286 (freebsd_pkg_f98dea27d68711ddabd10050568452ac.nasl)

Bugtraq ID: 32668

CVE ID: CVE-2008-5304

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now