Oval Definition:	oval:com.ubuntu.precise:def:20093585000
Revision Date: 2009-12-02 Version: 1 Title: CVE-2009-3585 on Ubuntu 12.04 LTS (precise) - medium. Description: Session fixation vulnerability in html/Elements/SetupSessionCookie in Best Practical Solutions RT 3.0.0 through 3.6.9 and 3.8.x through 3.8.5 allows remote attackers to hijack web sessions by setting the session identifier via a manipulation that leverages a second web server within the same domain. Family: unix Class: vulnerability Status: Reference(s): CVE-2009-3585 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND While related to the CVE in some way, the 'request-tracker3.8' package in precise is not affected.
BACK