Oval Definition:
oval:com.ubuntu.precise:def:20114902000
Revision Date
:
2012-01-04
Version
:
1
Title
:
CVE-2011-4902 on Ubuntu 12.04 LTS (precise) - medium.
Description
:
Special user input of BE editors is treated as serialized data and is deserialized by TYPO3. This allows BE editors to delete any arbitrary file the webserver has access to.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
CVE-2011-4902
Platform(s)
:
Ubuntu 12.04 LTS
Product(s)
:
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed.
AND
While related to the CVE in some way, the 'typo3-src' package in precise is not affected (note: '4.5.10+dfsg1-1').
BACK