Detections
Analytics
Debian DSA-951-2 : trac - missing input sanitising
high Nessus Plugin ID 22817
Synopsis
The remote Debian host is missing a security-related update.Description
This update corrects the search feature in trac, an enhanced wiki and issue tracking system for software development projects, which broke with the last security update. For completeness please find below the original advisory text :Several vulnerabilities have been discovered in trac, an enhanced wiki and issue tracking system for software development projects.
The Common Vulnerabilities and Exposures project identifies the following problems :
- CVE-2005-4065 Due to missing input sanitising it is possible to inject arbitrary SQL code into the SQL statements.
- CVE-2005-4644 A cross-site scripting vulnerability has been discovered that allows remote attackers to inject arbitrary web script or HTML.
Solution
Upgrade the trac package.The old stable distribution (woody) does not contain trac packages.
For the stable distribution (sarge) these problems have been fixed in version 0.8.1-3sarge4.
See Also
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=348791
https://security-tracker.debian.org/tracker/CVE-2005-4065
Plugin Details
Severity: High
ID: 22817
File Name: debian_DSA-951.nasl
Version: 1.19
Type: local
Agent: unix
Family: Debian Local Security Checks
Published: 10/14/2006
Updated: 1/4/2021
Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.6
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.9
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
Vulnerability Information
CPE: cpe:/o:debian:debian_linux:3.1, p-cpe:/a:debian:debian_linux:trac
Required KB Items: Host/local_checks_enabled, Host/Debian/release, Host/Debian/dpkg-l
Exploit Available: true
Exploit Ease: Exploits are available
Vulnerability Publication Date: 12/6/2005
Reference Information
CVE: CVE-2005-4065, CVE-2005-4644
DSA: 951