FreeBSD : bugzilla -- multiple vulnerabilities (09c87973-8b9d-11e1-b393-20cf30e32f6d)
Medium Nessus Plugin ID 58828
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionA Bugzilla Security Advisory reports : The following security issues have been discovered in Bugzilla : Unauthorized Access Due to a lack of proper validation of the X-FORWARDED-FOR header of an authentication request, an attacker could bypass the current lockout policy used for protection against brute- force password discovery.
All affected installations are encouraged to upgrade as soon as possible.
SolutionUpdate the affected packages.