Oval Definition:	oval:com.ubuntu.precise:def:20149650000
Revision Date: 2015-01-27 Version: 1 Title: CVE-2014-9650 on Ubuntu 12.04 LTS (precise) - low. Description: CRLF injection vulnerability in the management plugin in RabbitMQ 2.1.0 through 3.4.x before 3.4.1 allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the download parameter to api/definitions. Family: unix Class: vulnerability Status: Reference(s): CVE-2014-9650 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'rabbitmq-server' package in precise is affected and needs fixing.
BACK