FreeBSD Ports: geeklog

FreeBSD Ports: geeklog vulnerability in lib-comment.php and comment.ph

Reporter	Title	Published	Views	Family All 8
FreeBSD	geeklog xss vulnerability	8 Jan 200800:00	–	freebsd
CVE	CVE-2006-3756	20 Jul 200623:00	–	cve
Cvelist	CVE-2006-3756	20 Jul 200623:00	–	cvelist
EUVD	EUVD-2006-3750	7 Oct 202500:30	–	euvd
Tenable Nessus	FreeBSD : geeklog xss vulnerability (60e1792b-c380-11dc-821a-000bcdc1757a)	16 Jan 200800:00	–	nessus
Japan Vulnerability Notes	Geeklog cross-site scripting vulnerability	20 May 200815:00	–	jvn
NVD	CVE-2006-3756	21 Jul 200614:03	–	nvd
OpenVAS	FreeBSD Ports: geeklog	4 Sep 200800:00	–	openvas

#
#VID 60e1792b-c380-11dc-821a-000bcdc1757a
# OpenVAS Vulnerability Test
# $
# Description: Auto generated from vuxml or freebsd advisories
#
# Authors:
# Thomas Reinke <[email protected]>
#
# Copyright:
# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisories, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

include("revisions-lib.inc");
tag_insight = "The following package is affected: geeklog

CVE-2006-3756
Cross-site scripting (XSS) vulnerability in Geeklog 1.4.0sr4 and
earlier, and 1.3.11sr6 and earlier, allows remote attackers to inject
arbitrary web script or HTML via unspecified vectors when validating
comments in (1) lib-comment.php (1.4.0sr4) or (2) comment.php
(0.3.11sr6).";
tag_solution = "Update your system with the appropriate patches or
software upgrades.

http://www.geeklog.net/article.php/geeklog-1.4.0sr6
http://www.vuxml.org/freebsd/60e1792b-c380-11dc-821a-000bcdc1757a.html";
tag_summary = "The remote host is missing an update to the system
as announced in the referenced advisory.";


if(description)
{
 script_id(60186);
 script_version("$Revision: 4118 $");
 script_tag(name:"last_modification", value:"$Date: 2016-09-20 07:32:38 +0200 (Tue, 20 Sep 2016) $");
 script_tag(name:"creation_date", value:"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)");
 script_cve_id("CVE-2006-3756");
 script_tag(name:"cvss_base", value:"4.3");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:N");
 script_name("FreeBSD Ports: geeklog");



 script_category(ACT_GATHER_INFO);

 script_copyright("Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com");
 script_family("FreeBSD Local Security Checks");
 script_dependencies("gather-package-list.nasl");
 script_mandatory_keys("ssh/login/freebsdrel", "login/SSH/success");
 script_tag(name : "insight" , value : tag_insight);
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "summary" , value : tag_summary);
 script_tag(name:"qod_type", value:"package");
 script_tag(name:"solution_type", value:"VendorFix");
 exit(0);
}

#
# The script code starts here
#

include("pkg-lib-bsd.inc");

txt = "";
vuln = 0;
bver = portver(pkg:"geeklog");
if(!isnull(bver) && revcomp(a:bver, b:"1.4.1")<0) {
    txt += 'Package geeklog version ' + bver + ' is installed which is known to be vulnerable.\n';
    vuln = 1;
}

if(vuln) {
    security_message(data:string(txt));
} else if (__pkg_match) {
    exit(99); # Not vulnerable.
}

20 Sep 2016 00:00Current

6.7Medium risk

Vulners AI Score6.7

EPSS0.00639