Detections
Analytics

FreeBSD : magento -- multiple vulnerabilities (ea1d2530-72ce-11e5-a2a1-002590263bf5)

high Nessus Plugin ID 86389

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

Magento, Inc. reports :

SUPEE-6482 - This patch addresses two issues related to APIs and two cross-site scripting risks.

SUPEE-6285 - This patch provides protection against several types of security-related issues, including information leaks, request forgeries, and cross-site scripting.

SUPEE-5994 - This patch addresses multiple security vulnerabilities in Magento Community Edition software, including issues that can put customer information at risk.

SUPEE-5344 - Addresses a potential remote code execution exploit.

SUPEE-1533 - Addresses two potential remote code execution exploits.

Solution

Update the affected package.

See Also

https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=201709

https://magento.com/tech-resources/download

http://www.nessus.org/u?5898cd4d

http://www.nessus.org/u?6be61f5e

http://www.nessus.org/u?addd0c02

Plugin Details

Severity: High

ID: 86389

File Name: freebsd_pkg_ea1d253072ce11e5a2a1002590263bf5.nasl

Version: 2.5

Type: local

Published: 10/15/2015

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:magento, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 10/14/2015

Vulnerability Publication Date: 10/3/2014