FreeBSD : mono -- XML signature HMAC truncation spoofing (708c65a5-7c58-11de-a994-0030843d3802)

This script is Copyright (C) 2009-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Secunia reports :

A security issue has been reported in Mono, which can be exploited by
malicious people to conduct spoofing attacks.

The security issue is caused due to an error when processing certain
XML signatures.

See also :

http://www.nessus.org/u?164a7aea

Solution :

Update the affected package.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N)

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 40429 (freebsd_pkg_708c65a57c5811dea9940030843d3802.nasl)

Bugtraq ID:

CVE ID: CVE-2009-0217

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now