FreeBSD : horde -- XSS vulnerability in help window (ed1d404d-2784-11d9-b954-000bdb1444a4)

This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

A Horde Team announcement states that a potential cross-site scripting
vulnerability in the help window has been corrected. The vulnerability
appears to involve the handling of the topic and module parameters of
the help window template.

See also :

http://marc.info/?l=horde-announce&m=109879164718625
http://www.nessus.org/u?34e04631

Solution :

Update the affected packages.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 36450 (freebsd_pkg_ed1d404d278411d9b954000bdb1444a4.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now