FreeBSD : cgiwrap -- XSS Vulnerability (bc6a7e79-e111-11dd-afcd-00e0815b8da8)
Medium Nessus Plugin ID 35354
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionSecunia reports :
A vulnerability has been reported in CGIWrap, which can be exploited by malicious people to conduct cross-site scripting attacks.
The vulnerability is caused due to the application generating error messages without specifying a charset. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
Successful exploitation may require that the victim uses Internet Explorer or a browser based on Internet Explorer components.
SolutionUpdate the affected package.