Oval Definition:oval:com.ubuntu.precise:def:20163674000
Revision Date:2016-05-17Version:1
Title:CVE-2016-3674 on Ubuntu 12.04 LTS (precise) - medium.
Description:Multiple XML external entity (XXE) vulnerabilities in the (1) Dom4JDriver, (2) DomDriver, (3) JDomDriver, (4) JDom2Driver, (5) SjsxpDriver, (6) StandardStaxDriver, and (7) WstxDriver drivers in XStream before 1.4.9 allow remote attackers to read arbitrary files via a crafted XML document.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2016-3674
Platform(s):Ubuntu 12.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 12.04 LTS (precise) is installed.
  • AND The 'libxstream-java' package in precise is affected and needs fixing.
  • BACK