Oval Definition:	oval:com.ubuntu.precise:def:20134116000
Revision Date: 2014-04-22 Version: 1 Title: CVE-2013-4116 on Ubuntu 12.04 LTS (precise) - medium. Description: lib/npm.js in Node Packaged Modules (npm) before 1.3.3 allows local users to overwrite arbitrary files via a symlink attack on temporary files with predictable names that are created when unpacking archives. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-4116 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'npm' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
BACK