|
|
Family: CGI abuses --> Category: infos
Bonsai Mutiple Flaws Vulnerability Scan
Vulnerability Scan Summary
Determine if bonsai is vulnerable to xss attack
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote host contains a CGI which is vulnerable to multiple flaws
allowing code execution and cross-site scripting attacks.
Description :
The remote host has the CGI suite 'Bonsai' installed.
This suite is used to browse a CVS repository with a web browser.
The remote version of this software is to be vulnerable to various
flaws ranging from path disclosure and cross site scripting to remote
command execution.
A possible hacker may exploit these flaws to temper with the integrity of
the remote host.
Solution :
Upgrade to the latest version of Bonsai
Threat Level:
Critical / CVSS Base Score : 10
(AV:R/AC:L/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|
