Scientific Linux Security Update : htdig on SL5.x, SL4.x i386/x86_64
Medium Nessus Plugin ID 60319
SynopsisThe remote Scientific Linux host is missing one or more security updates.
DescriptionA cross-site scripting flaw was discovered in a htdig search page. An attacker could construct a carefully crafted URL, which once visited by an unsuspecting user, could cause a user's Web browser to execute malicious script in the context of the visited htdig search Web page.
SolutionUpdate the affected htdig and / or htdig-web packages.