FreeBSD : xfce -- multiple vulnerabilities (024edd06-c933-11dc-810c-0016179b2dd5)

Critical Nessus Plugin ID 31081


The remote FreeBSD host is missing one or more security-related updates.


Gentoo reports :

A remote attacker could entice a user to install a specially crafted 'rc' file to execute arbitrary code via long strings in the 'Name' and 'Comment' fields or via unspecified vectors involving the second vulnerability.


Update the affected packages.

See Also

Plugin Details

Severity: Critical

ID: 31081

File Name: freebsd_pkg_024edd06c93311dc810c0016179b2dd5.nasl

Version: $Revision: 1.12 $

Type: local

Published: 2008/02/14

Modified: 2013/06/21

Dependencies: 12634

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:libxfce4gui, p-cpe:/a:freebsd:freebsd:xfce4-panel, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2008/01/22

Vulnerability Publication Date: 2008/01/09

Reference Information

CVE: CVE-2007-6531, CVE-2007-6532

CWE: 119