OVAL Reference oval:com.ubuntu.precise:def:20134941000

Oval Definition:

oval:com.ubuntu.precise:def:20134941000

Revision Date:	2013-07-29	Version:	1
Title:	CVE-2013-4941 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 3.2.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted string in a URL.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-4941
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'moodle' package in precise is not known (status: 'needs-triage'). It is pending evaluation.