Oval Definition:	oval:com.ubuntu.xenial:def:201731670000000
Revision Date: 2017-06-20 Version: 1 Title: CVE-2017-3167 on Ubuntu 16.04 LTS (xenial) - medium. Description: In Apache httpd 2.2.x before 2.2.33 and 2.4.x before 2.4.26, use of the ap_get_basic_auth_pw() by third-party modules outside of the authentication phase may lead to authentication requirements being bypassed. Family: unix Class: vulnerability Status: Reference(s): CVE-2017-3167 Platform(s): Ubuntu 16.04 LTS Product(s): Definition Synopsis Ubuntu 16.04 LTS (xenial) is installed. AND apache2 package in xenial was vulnerable but has been fixed (note: '2.4.18-2ubuntu3.3').
BACK