OVAL Reference oval:org.mitre.oval:def:11879

Oval Definition:

oval:org.mitre.oval:def:11879

Revision Date:	2014-07-21	Version:	19
Title:	DSA-2083-1 moin -- missing input sanitisation
Description:	It was discovered that moin, a python clone of WikiWiki, does not sufficiently sanitise parameters when passing them to the add_msg function. This allows a remote attackers to conduct cross-site scripting attacks for example via the template parameter. For the stable distribution, this problem has been fixed in version 1.7.1-3+lenny5. For the testing distribution, this problem will be fixed soon. For the unstable distribution, this problem has been fixed in version 1.9.3-1.
Family:	unix	Class:	patch
Status:	ACCEPTED	Reference(s):	CVE-2010-2487 DSA-2083-1
Platform(s):	Debian GNU/Linux 5.0	Product(s):	moin
Definition Synopsis
Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND python-moinmoin DPKG is earlier than 1.7.1-3+lenny5