OVAL Reference oval:com.ubuntu.precise:def:20134939000

Oval Definition:

oval:com.ubuntu.precise:def:20134939000

Revision Date:	2013-07-29	Version:	1
Title:	CVE-2013-4939 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Cross-site scripting (XSS) vulnerability in io.swf in the IO Utility component in Yahoo! YUI 3.0.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted string in a URL.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-4939
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'moodle' package in precise is not known (status: 'needs-triage'). It is pending evaluation.