Remote File Inclusion Vulnerability of TimThumb found on FreeBSD. The remote FreeBSD host is missing a security-related update.
Vulnerability Description :-
The PivotX team report is saying TimThumb domain name security bypass and insecure cache handling.PivotX before 2.3.0 includes a vulnerable version of TimThumb. If you are still running PivotX 2.2.6, you might be vulnerable to a security exploit, that was patched previously. Version 2.3.0 doesn't have this issue, but any older version of PivotX might be vulnerable.
Solution :-
Update the affected package.
Risk Factor :-
High
For more information about this vulnerability Click Here
-News Source (Tenable, FreeBSD)
LINK TO OUR HOME PAGE :


Categories:
LINUX
,
vulnerablity