FreeBSD : pear-Horde_Image -- DoS vulnerability (00e4050b-56c1-11e7-8e66-08606e46faad)
Medium Nessus Plugin ID 100974
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionMichael J Rubinsky reports :
The second vulnerability (CVE-2017-9773) is a DOS vulnerability. This only affects Horde installations that do not have a configured image handling backend, and thus use the 'Null' image driver. It is exploitable by a logged in user clicking on a maliciously crafted URL.
SolutionUpdate the affected package.