OVAL Reference oval:com.ubuntu.precise:def:20102761000

Oval Definition:

oval:com.ubuntu.precise:def:20102761000

Revision Date:	2010-12-06	Version:	1
Title:	CVE-2010-2761 on Ubuntu 12.04 LTS (precise) - medium.
Description:	The multipart_init function in (1) CGI.pm before 3.50 and (2) Simple.pm in CGI::Simple 1.112 and earlier uses a hardcoded value of the MIME boundary string in multipart/x-mixed-replace content, which allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via crafted input that contains this value, a different vulnerability than CVE-2010-3172.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2010-2761
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'libcgi-pm-perl' package in precise is not affected (note: '3.50-1'). OR NOT While related to the CVE in some way, the 'libcgi-simple-perl' package in precise is not affected (note: '1.111-2'). OR NOT While related to the CVE in some way, the 'perl' package in precise is not affected (note: '5.10.1-17ubuntu1').