FreeBSD Ports: Fspd Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://www.debian.org/security/2004/dsa-416 http://www.vuxml.org/freebsd/20be2982-4aae-11d8-96f2-0020ed76ef5a.html

Insight

The following package is affected: fspd CVE-2003-1022 Directory traversal vulnerability in fsp before 2.81.b18 allows remote users to access files outside the FSP root directory. CVE-2004-0011 Buffer overflow in fsp before 2.81.b18 allows remote users to execute arbitrary code.

Severity

Classification

CVE CVE-2003-1022, CVE-2004-0011

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

FreeBSD Ports: chromium
FreeBSD Ports: cacti
FreeBSD Ports: bugzilla
FreeBSD Ports: chromium
FreeBSD Ports: asterisk18

FreeBSD Ports: fspd

Take action and discover your vulnerabilities