Oval Definition:	oval:com.ubuntu.precise:def:20176410000
Revision Date: 2017-03-02 Version: 1 Title: CVE-2017-6410 on Ubuntu 12.04 LTS (precise) - medium. Description: kpac/script.cpp in KDE kio before 5.32 and kdelibs before 4.14.30 calls the PAC FindProxyForURL function with a full https URL (potentially including Basic Authentication credentials, a query string, or PATH_INFO), which allows remote attackers to obtain sensitive information via a crafted PAC file. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-6410 Platform(s): Ubuntu 12.04 LTS Product(s): Definition Synopsis Ubuntu 12.04 LTS (precise) is installed. AND The 'kde4libs' package in precise was vulnerable but has been fixed (note: '4:4.8.5-0ubuntu0.6').
BACK