OVAL Reference oval:com.ubuntu.precise:def:20134942000

Oval Definition:

oval:com.ubuntu.precise:def:20134942000

Revision Date:	2013-07-29	Version:	1
Title:	CVE-2013-4942 on Ubuntu 12.04 LTS (precise) - medium.
Description:	Cross-site scripting (XSS) vulnerability in flashuploader.swf in the Uploader component in Yahoo! YUI 3.5.0 through 3.9.1, as used in Moodle through 2.1.10, 2.2.x before 2.2.11, 2.3.x before 2.3.8, 2.4.x before 2.4.5, 2.5.x before 2.5.1, and other products, allows remote attackers to inject arbitrary web script or HTML via a crafted string in a URL.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2013-4942
Platform(s):	Ubuntu 12.04 LTS	Product(s):
Definition Synopsis
Ubuntu 12.04 LTS (precise) is installed. AND The vulnerability of the 'moodle' package in precise is not known (status: 'needs-triage'). It is pending evaluation.