FreeBSD : extman -- password bypass vulnerability (44c8694a-12f9-11dd-9b26-001c2514716c)
High Nessus Plugin ID 32062
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionExtmail team reports :
Emergency update #4 fixes a serious security vulnerability.
Successful exploit of this vulnerability would allow attacker to change user's password without knowing it by using specifically crafted HTTP request.
SolutionUpdate the affected package.