FreeBSD : egroupware -- arbitrary file download in JiNN (39953788-6bbb-11d9-8bc9-000a95bc6fae)

high Nessus Plugin ID 18902

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

eGroupWare contains a bug in the JiNN component that allows a remote attacker to download arbitrary files.

Solution

Update the affected package.

See Also

http://www.nessus.org/u?76c653e3

http://www.nessus.org/u?01b5ed39

http://www.nessus.org/u?98259066

Plugin Details

Severity: High

ID: 18902

File Name: freebsd_pkg_399537886bbb11d98bc9000a95bc6fae.nasl

Version: 1.13

Type: local

Published: 7/13/2005

Updated: 1/6/2021

Supported Sensors: Nessus

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:egroupware, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 1/21/2005

Vulnerability Publication Date: 10/15/2004