Oval Definition:oval:com.ubuntu.precise:def:20135648000
Revision Date:2013-08-29Version:1
Title:CVE-2013-5648 on Ubuntu 12.04 LTS (precise) - medium.
Description:Absolute path traversal vulnerability in the handleStartDataFile function in DigiDocSAXParser.c in libdigidoc 3.6.0.0, as used in ID-software before 3.7.2 and other products, allows remote attackers to overwrite arbitrary files via a filename beginning with / (slash) or \ (backslash) in a DDOC file.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2013-5648
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND The vulnerability of the 'libdigidoc' package in precise is not known (status: 'needs-triage'). It is pending evaluation.
    • BACK