Oval Definition:	oval:com.ubuntu.precise:def:20136780000
Revision Date: 2013-11-13 Version: 1 Title: CVE-2013-6780 on Ubuntu 12.04 LTS (precise) - medium. Description: Cross-site scripting (XSS) vulnerability in uploader.swf in the Uploader component in Yahoo! YUI 2.5.0 through 2.9.0 allows remote attackers to inject arbitrary web script or HTML via the allowedDomain parameter. Family: unix Class: vulnerability Status: Reference(s): CVE-2013-6780 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND Package Information NOT While related to the CVE in some way, the 'maas' package in precise is not affected. OR The 'yui' package in precise is affected and needs fixing.
BACK