Oval Definition:	oval:com.ubuntu.precise:def:20130214000
Revision Date: 2013-02-02 Version: 1 Title: CVE-2013-0214 on Ubuntu 12.04 LTS (precise) - medium. Description: Cross-site request forgery (CSRF) vulnerability in the Samba Web Administration Tool (SWAT) in Samba 3.x before 3.5.21, 3.6.x before 3.6.12, and 4.x before 4.0.2 allows remote attackers to hijack the authentication of arbitrary users by leveraging knowledge of a password and composing requests that perform SWAT actions. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-0214 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information The 'samba' package in precise was vulnerable but has been fixed (note: '2:3.6.3-2ubuntu2.17'). OR The 'samba4' package in precise is affected and needs fixing.
BACK