FreeBSD : james -- multiple vulnerabilities (be3069c9-67e7-11e5-9909-002590263bf5)

High Nessus Plugin ID 86214


The remote FreeBSD host is missing a security-related update.


The Apache James Project reports :

This release has many enhancements and bug fixes over the previous release. See the Release Notes for a detailed list of changes. Some of the earlier defects could turn a James mail server into an Open Relay and allow files to be written on disk. All users of James Server are urged to upgrade to version v2.3.2.1 as soon as possible.


Update the affected package.

See Also

Plugin Details

Severity: High

ID: 86214

File Name: freebsd_pkg_be3069c967e711e59909002590263bf5.nasl

Version: $Revision: 2.4 $

Type: local

Published: 2015/10/01

Modified: 2016/10/19

Dependencies: 12634

Risk Information

Risk Factor: High


Base Score: 9.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C


Base Score: 8.1

Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:james, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 2015/10/01

Vulnerability Publication Date: 2015/09/30

Reference Information

CVE: CVE-2015-7611

CERT: 988628