Oval Definition:	oval:org.mitre.oval:def:13309
Revision Date: 2014-06-30 Version: 20 Title: USN-967-1 -- w3m vulnerability Description: Ludwig Nussel discovered w3m does not properly handle SSL/TLS certificates with NULL characters in the certificate name. An attacker could exploit this to perform a man in the middle attack to view sensitive information or alter encrypted communications Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2010-2074 USN-967-1 USN-967-1 Platform(s): Ubuntu 10.04 Ubuntu 6.06 Ubuntu 8.04 Ubuntu 9.04 Ubuntu 9.10 Product(s): w3m Definition Synopsis Release section Ubuntu 8.04 is installed AND Supported architectures section Installed architecture is sparc OR Installed architecture is i386 OR Installed architecture is amd64 OR Installed architecture is lpia OR Installed architecture is powerpc AND Packages section w3m-img DPKG is earlier than 0.5.1-5.1ubuntu1.1 OR w3m DPKG is earlier than 0.5.1-5.1ubuntu1.1 OR Release section Ubuntu 10.04 is installed AND Supported architectures section Installed architecture is sparc OR Installed architecture is i386 OR Installed architecture is amd64 OR Installed architecture is powerpc AND Packages section w3m-img DPKG is earlier than 0.5.2-2.1ubuntu1.1 OR w3m DPKG is earlier than 0.5.2-2.1ubuntu1.1 OR Release section Ubuntu 9.10 is installed AND Supported architectures section Installed architecture is sparc OR Installed architecture is i386 OR Installed architecture is amd64 OR Installed architecture is lpia OR Installed architecture is powerpc AND Packages section w3m-img DPKG is earlier than 0.5.2-2ubuntu1.1 OR w3m DPKG is earlier than 0.5.2-2ubuntu1.1 OR Release section Ubuntu 6.06 is installed AND Supported architectures section Installed architecture is sparc OR Installed architecture is i386 OR Installed architecture is amd64 OR Installed architecture is powerpc AND Packages section w3m-img DPKG is earlier than 0.5.1-4ubuntu2.6.06.1 OR w3m DPKG is earlier than 0.5.1-4ubuntu2.6.06.1 OR Release section Ubuntu 9.04 is installed AND Supported architectures section Installed architecture is sparc OR Installed architecture is i386 OR Installed architecture is amd64 OR Installed architecture is lpia OR Installed architecture is powerpc AND Packages section w3m-img DPKG is earlier than 0.5.2-2ubuntu0.1 OR w3m DPKG is earlier than 0.5.2-2ubuntu0.1
BACK