Oval Definition:	oval:com.ubuntu.precise:def:20123835000
Revision Date: 2012-07-03 Version: 1 Title: CVE-2012-3835 on Ubuntu 12.04 LTS (precise) - medium. Description: Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 3.1 allow remote attackers to inject arbitrary web script or HTML via the (1) url parameter to top.php or (2) time[0][0] parameter to forensics/base_qry_main.php, which is not properly handled in an error page. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-3835 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'ossim' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
BACK