Oval Definition:	oval:com.ubuntu.precise:def:20120825000
Revision Date: 2013-10-28 Version: 1 Title: CVE-2012-0825 on Ubuntu 12.04 LTS (precise) - medium. Description: Drupal 6.x before 6.23 and 7.x before 7.11 does not verify that Attribute Exchange (AX) information is signed, which allows remote attackers to modify potentially sensitive AX information without detection via a man-in-the-middle (MITM) attack. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-0825 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'drupal6' package in precise is affected and needs fixing. OR NOT While related to the CVE in some way, the 'drupal7' package in precise is not affected (note: '7.12-1').
BACK