Detections
Analytics

FreeBSD : postfixadmin -- Multiple Vulnerabilities (93688f8f-4935-11e1-89b4-001ec9578670)

medium Nessus Plugin ID 57720

Language:

Synopsis

The remote FreeBSD host is missing a security-related update.

Description

The Postfix Admin Team reports :

Multiple XSS vulnerabilities exist : - XSS with $_GET[domain] in templates/menu.php and edit-vacation - XSS in some create-domain input fields - XSS in create-alias and edit-alias error message - XSS (by values stored in the database) in fetchmail list view, list-domain and list-virtual

Multiple SQL injection issues exist : - SQL injection in pacrypt() (if $CONF[encrypt] == 'mysql_encrypt') - SQL injection in backup.php - the dump was not mysql_escape()d, therefore users could inject SQL (for example in the vacation message) which will be executed when restoring the database dump. WARNING: database dumps created with backup.php from 2.3.4 or older might contain malicious SQL. Double-check before using them!

Solution

Update the affected package.

See Also

http://www.nessus.org/u?25791307

http://www.nessus.org/u?ab6aab38

Plugin Details

Severity: Medium

ID: 57720

File Name: freebsd_pkg_93688f8f493511e189b4001ec9578670.nasl

Version: 1.7

Type: local

Published: 1/30/2012

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Medium

Base Score: 6.5

Vector: CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P

CVSS v3

Risk Factor: Medium

Base Score: 6.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Vulnerability Information

CPE: p-cpe:/a:freebsd:freebsd:postfixadmin, cpe:/o:freebsd:freebsd

Required KB Items: Host/local_checks_enabled, Host/FreeBSD/release, Host/FreeBSD/pkg_info

Patch Publication Date: 1/27/2012

Vulnerability Publication Date: 1/27/2012

Reference Information

CVE: CVE-2012-0811, CVE-2012-0812