OVAL Reference oval:com.ubuntu.precise:def:20126112000

Oval Definition:

oval:com.ubuntu.precise:def:20126112000

Revision Date:	2013-01-27	Version:	1
Title:	CVE-2012-6112 on Ubuntu 12.04 LTS (precise) - medium.
Description:	classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-6112
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND Package Information The vulnerability of the 'tinymce' package in precise is not known (status: 'needs-triage'). It is pending evaluation. OR The vulnerability of the 'tinymce2' package in precise is not known (status: 'needs-triage'). It is pending evaluation.