Detections
Analytics
FreeBSD : xfce -- multiple vulnerabilities (024edd06-c933-11dc-810c-0016179b2dd5)
critical Nessus Plugin ID 31081
Synopsis
The remote FreeBSD host is missing one or more security-related updates.Description
Gentoo reports :A remote attacker could entice a user to install a specially crafted 'rc' file to execute arbitrary code via long strings in the 'Name' and 'Comment' fields or via unspecified vectors involving the second vulnerability.
Solution
Update the affected packages.See Also
Plugin Details
Severity: Critical
ID: 31081
File Name: freebsd_pkg_024edd06c93311dc810c0016179b2dd5.nasl
Version: 1.16
Type: local
Family: FreeBSD Local Security Checks
Published: 2/14/2008
Updated: 1/6/2021
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
CPE: p-cpe:/a:freebsd:freebsd:libxfce4gui, p-cpe:/a:freebsd:freebsd:xfce4-panel, cpe:/o:freebsd:freebsd
Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info
Patch Publication Date: 1/22/2008
Vulnerability Publication Date: 1/9/2008
Reference Information
CVE: CVE-2007-6531, CVE-2007-6532
CWE: 119