Oval Definition:	oval:com.ubuntu.trusty:def:20124402000
Revision Date: 2012-09-19 Version: 1 Title: CVE-2012-4402 on Ubuntu 14.04 LTS (trusty) - medium. Description: webservice/lib.php in Moodle 2.1.x before 2.1.8, 2.2.x before 2.2.5, and 2.3.x before 2.3.2 does not properly restrict the use of web-service tokens, which allows remote authenticated users to run arbitrary external-service functions via a token intended for only one service. Family: unix Class: vulnerability Status: Reference(s): CVE-2012-4402 Platform(s): Ubuntu 14.04 LTS Product(s): Definition Synopsis Ubuntu 14.04 LTS (trusty) is installed. AND NOT While related to the CVE in some way, the 'moodle' package in trusty is not affected (note: '2.2.6.dfsg-1').
BACK