|
Family: Debian Local Security Checks --> Category: infos
[DSA768] DSA-768-1 phpbb2 Vulnerability Scan
Vulnerability Scan Summary DSA-768-1 phpbb2
Detailed Explanation for this Vulnerability Test
A cross-site scripting vulnerability has been detected in phpBB2, a
fully featured and skinneable flat webforum software, that allows
remote attackers to inject arbitrary web script or HTML via nested
tags.
The old stable distribution (woody) does not contain phpbb2.
For the stable distribution (sarge) this problem has been fixed in
version 2.0.13-6sarge1.
For the unstable distribution (sid) this problem has been fixed in
version 2.0.13-6sarge1.
We recommend that you upgrade your phpbb2 packages.
Solution : http://www.debian.org/security/2005/dsa-768
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|