Oval Definition:	oval:com.ubuntu.xenial:def:20164437000
Revision Date: 2016-06-07 Version: 1 Title: CVE-2016-4437 on Ubuntu 16.04 LTS (xenial) - medium. Description: Apache Shiro before 1.2.5, when a cipher key has not been configured for the "remember me" feature, allows remote attackers to execute arbitrary code or bypass intended access restrictions via an unspecified request parameter. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-4437 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND The 'shiro' package in xenial is affected and needs fixing.
BACK