Summary
The remote host is missing an update to the system as announced in the referenced advisory.
Solution
Update your system with the appropriate patches or software upgrades.
http://dojotoolkit.org/blog/post/dylan/2010/03/dojo-security-advisory/ http://framework.zend.com/security/advisory/ZF2010-07 http://osdir.com/ml/bugtraq.security/2010-03/msg00133.html http://packetstormsecurity.org/1003-exploits/dojo-xss.txt http://secunia.com/advisories/38964
http://www.gdssecurity.com/l/b/2010/03/12/multiple-dom-based-xss-in-dojo-toolkit-sdk/ http://www.vuxml.org/freebsd/8ad1c404-3e78-11df-a5a1-0050568452ac.html
Insight
The following package is affected: ZendFramework
Severity
Classification
-
CVE CVE-2010-2272, CVE-2010-2273, CVE-2010-2274, CVE-2010-2275, CVE-2010-2276 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities