Remote File Inclusion Vulnerability of TimThumb found on FreeBSD. The remote FreeBSD host is missing a security-related update.
Vulnerability Description :-
The PivotX team report is saying TimThumb domain name security bypass and insecure cache handling.PivotX before 2.3.0 includes a vulnerable version of TimThumb. If you are still running PivotX 2.2.6, you might be vulnerable to a security exploit, that was patched previously. Version 2.3.0 doesn't have this issue, but any older version of PivotX might be vulnerable.
Solution :-
Update the affected package.
Risk Factor :-
High
For more information about this vulnerability Click Here
-News Source (Tenable, FreeBSD)
LINK TO OUR HOME PAGE :
![](http://3.bp.blogspot.com/-RxwiSFen_Nw/TjQLGGZwd5I/AAAAAAAAAPw/mVJsXm-Qib0/s1600/images.png)
![](http://1.bp.blogspot.com/-vqQfz6VXhq0/TjQI5uB_3gI/AAAAAAAAAPk/0RSeSEY8YuA/s1600/mini_rss.png)
Categories:
LINUX
,
vulnerablity