FreeBSD : mod_perl -- XSS (4a638895-41b7-11de-b1cc-00219b0fc4d8)

This script is Copyright (C) 2009-2014 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing one or more security-related
updates.

Description :

Secunia reports :

Certain input passed to the 'Apache::Status' and 'Apache2::Status'
modules is not properly sanitised before being returned to the user.
This can be exploited to execute arbitrary HTML and script code in a
user's browser session in context of an affected website.

See also :

http://www.nessus.org/u?9c8a27a7

Solution :

Update the affected packages.

Risk factor :

Low / CVSS Base Score : 2.6
(CVSS2#AV:N/AC:H/Au:N/C:N/I:P/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 38802 (freebsd_pkg_4a63889541b711deb1cc00219b0fc4d8.nasl)

Bugtraq ID:

CVE ID: CVE-2009-0796

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now