This script is Copyright (C) 2009-2016 Tenable Network Security, Inc.
The remote SuSE 9 host is missing a security-related patch.
This update fixes multiple bugs in PHP :
- Predictable generaton of an initialization vector (IV)
in the mcrypt extension
- Additional cookie attributes could be injected via a
- Specially crafted files could cause integer overflows in
gd and leverage them to at least crash gd based
This update covers CVE IDs CVE-2007-2727, CVE-2007-3472,
CVE-2007-3475, CVE-2007-3476 CVE-2007-3477, CVE-2007-3478 and
See also :
Apply YOU patch number 11666.
Risk factor :
Medium / CVSS Base Score : 5.0
Family: SuSE Local Security Checks
Nessus Plugin ID: 41143 ()
Get Nessus Professional to scan unlimited IPs, run compliance checks & moreBuy Nessus Professional Now