This script is Copyright (C) 2015 Tenable Network Security, Inc.
The remote FreeBSD host is missing one or more security-related
Best Practical reports :
RT 4.0.0 and above are vulnerable to a cross-site scripting (XSS)
attack via the user and group rights management pages. This
vulnerability is assigned CVE-2015-5475. It was discovered and
reported by Marcin Kopec at Data Reliance Shared Service Center.
RT 4.2.0 and above are vulnerable to a cross-site scripting (XSS)
attack via the cryptography interface. This vulnerability could allow
RT's user interface. Installations which use neither GnuPG nor S/MIME
See also :
Update the affected packages.
Risk factor :
Medium / CVSS Base Score : 4.3