Oval Definition:oval:org.mitre.oval:def:17940
Revision Date:2014-06-23Version:7
Title:DSA-2587-1 libcgi-pm-perl - HTTP header injection
Description:It was discovered that the CGI module for Perl does not filter LF characters in the Set-Cookie and P3P headers, potentially allowing attackers to inject HTTP headers.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2012-5526
DSA-2587-1
Platform(s):Debian GNU/kFreeBSD 6.0
Debian GNU/Linux 6.0
Product(s):libcgi-pm-perl
Definition Synopsis
  • Debian 6.0 is installed
  • AND GNU/Linux or GNU/kFreeBSD kernel
  • Debian GNU/Linux is installed
  • OR Debian GNU/kFreeBSD is installed
  • AND libcgi-pm-perl DPKG is earlier than 3.49-1squeeze2
    • BACK