FreeBSD : otrs -- XSS vulnerability (661bd031-c37d-11e2-addb-60a44c524f57)

This script is Copyright (C) 2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

The OTRS Project reports :

An attacker with permission to write changes, workorder items or FAQ
articles could inject JavaScript code into the articles which would be
executed by the browser of other users reading the article.

See also :

http://www.nessus.org/u?d4ed1754
http://www.nessus.org/u?a5b68ce5

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 66582 ()

Bugtraq ID:

CVE ID: CVE-2013-2637

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now