FreeBSD : bitlbee -- account recreation security issues (24ec781b-8c11-11dd-9923-0016d325a0ed)

High Nessus Plugin ID 34301


The remote FreeBSD host is missing a security-related update.


Secunia reports :

Some security issues have been reported in BitlBee, which can be exploited by malicious people to bypass certain security restrictions and hijack accounts.

The security issues are caused due to unspecified errors, which can be exploited to overwrite existing accounts.


Update the affected package.

See Also

Plugin Details

Severity: High

ID: 34301

File Name: freebsd_pkg_24ec781b8c1111dd99230016d325a0ed.nasl

Version: $Revision: 1.14 $

Type: local

Published: 2008/09/28

Modified: 2016/12/08

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:bitlbee, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2008/09/26

Vulnerability Publication Date: 2008/08/27

Reference Information

CVE: CVE-2008-3920, CVE-2008-3969

Secunia: 31633

CWE: 264, 399