FreeBSD Ports : Multiple Browsers Frame Injection
High Nessus Plugin ID 14758
SynopsisThe remote device is missing a vendor-supplied security patch
DescriptionThe remote host is running one of the following package :
kdelibs < 3.2.3_3 kdebase < 3.2.3_1 7.50 <= linux-opera < 7.52 7.50 <= opera < 7.52 firefox < 0.9 linux-mozilla < 1.7 linux-mozilla-devel < 1.7 mozilla-gtk1 < 1.7 mozilla < 1.7,2 netscape7 < 7.2
These packages contain a bug which may allow an attacker to perform a frame injection. An attacker may exploit this flaw by setting up a rogue website which would insert its own frames in the pages of an otherwise trusted web site.