OVAL Reference oval:com.ubuntu.trusty:def:20126112000

Oval Definition:

oval:com.ubuntu.trusty:def:20126112000

Revision Date:	2013-01-27	Version:	1
Title:	CVE-2012-6112 on Ubuntu 14.04 LTS (trusty) - medium.
Description:	classes/GoogleSpell.php in the PHP Spellchecker (aka Google Spellchecker) addon before 2.0.6.1 for TinyMCE, as used in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 and other products, does not properly handle control characters, which allows remote attackers to trigger arbitrary outbound HTTP requests via a crafted string.
Family:	unix	Class:	vulnerability
Status:		Reference(s):	CVE-2012-6112
Platform(s):	Ubuntu 14.04 LTS	Product(s):
Definition Synopsis
Ubuntu 14.04 LTS (trusty) is installed. AND The vulnerability of the 'tinymce' package in trusty is not known (status: 'needs-triage'). It is pending evaluation.