FreeBSD : drupal -- Multiple cross-site scripting vulnerabilities (1f5b711b-3d0e-11dc-b3d3-0016179b2dd5)

NASLDB: FreeBSD : drupal -- Multiple cross-site scripting vulnerabilities (1f5b711b-3d0e-11dc-b3d3-0016179b2dd5)

General

ID: 25803
Name: FreeBSD : drupal — Multiple cross-site scripting vulnerabilities (1f5b711b-3d0e-11dc-b3d3-0016179b2dd5)

Summary: Checks for updated packages in pkg_info output

Credits: Tenable Network Security, Inc.

Classification

Risk: –

CVSS: –
CVSS Base Vector: –
CVSS Temporal Vector: –

Port: 0
Family: FreeBSD Local Security Checks
Type: Local

Description

The Drupal Project reports :

Some server variables are not escaped consistently. When a malicious
user is able to entice a victim to visit a specially crafted link or
webpage, arbitrary HTML and script code can be injected and executed
in the context of the victim’s session on the targeted website.

Custom content type names are not escaped consistently. A malicious
user with the ‘administer content types’ permission would be able to
inject and execute arbitrary HTML and script code on the website.
Revoking the ‘administer content types’ permission provides an
immediate workaround.

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: –
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: 2007/07/26
Patch Release: 2007/07/28
Plugin Release: 2007/07/30

Plugin

Version: 1.9
Filename: freebsd_pkg_1f5b711b3d0e11dcb3d30016179b2dd5.nasl
Filesize: 4690 bytes
MD5 Hash: 9829b8fb3a248422ceb6df9e89d9faf5

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/FreeBSD/release", "Host/FreeBSD/pkg_info
Dependencies: "ssh_get_info.nasl"