ID de Prueba:	1.3.6.1.4.1.25623.1.0.68496
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Ports: otrs
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to the system as announced in the referenced advisory. The following package is affected: otrs CVE-2010-2080 Multiple cross-site scripting (XSS) vulnerabilities in Open Ticket Request System (OTRS) 2.3.x before 2.3.6 and 2.4.x before 2.4.8 allow remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Solution: Update your system with the appropriate patches or software upgrades. http://otrs.org/advisory/OSA-2010-02-en/ http://otrs.org/advisory/OSA-2010-03-en/ http://www.vuxml.org/freebsd/96e776c7-e75c-11df-8f26-00151735203a.html CVSS Score: 3.5 CVSS Vector: AV:N/AC:M/Au:S/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2010-2080 BugTraq ID: 43264 http://www.securityfocus.com/bid/43264 http://secunia.com/advisories/41381 SuSE Security Announcement: SUSE-SR:2010:024 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2010-12/msg00006.html XForce ISS Database: otrs-unspecified-xss(61868) https://exchange.xforce.ibmcloud.com/vulnerabilities/61868 Common Vulnerability Exposure (CVE) ID: CVE-2010-4071 http://bugs.gentoo.org/342687 http://www.vuxml.org/freebsd/96e776c7-e75c-11df-8f26-00151735203a.html http://www.osvdb.org/68882 http://secunia.com/advisories/41978
Copyright	Copyright (c) 2010 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.