Oval Definition:
oval:com.ubuntu.cosmic:def:20149037000
Revision Date
:
2014-11-25
Version
:
1
Title
:
CVE-2014-9037 on Ubuntu 18.10 (cosmic) - medium.
Description
:
WordPress before 3.7.5, 3.8.x before 3.8.5, 3.9.x before 3.9.3, and 4.x before 4.0.1 might allow remote attackers to obtain access to an account idle since 2008 by leveraging an improper PHP dynamic type comparison for an MD5 hash.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2014-9037
Platform(s)
:
Ubuntu 18.10
Product(s)
:
Definition Synopsis
Ubuntu 18.10 (cosmic) is installed.
AND
NOT
While related to the CVE in some way, the 'wordpress' package in cosmic is not affected (note: '4.0.1+dfsg-1').
BACK