Oval Definition:
oval:org.mitre.oval:def:18620
Revision Date
:
2014-06-23
Version
:
8
Title
:
DSA-1362-1 lighttpd - several vulnerabilities
Description
:
Several vulnerabilities were discovered in lighttpd, a fast webserver with minimal memory footprint, which could allow the execution of arbitrary code via the overflow of CGI variables when mod_fcgi was enabled.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2007-3946
CVE-2007-3947
CVE-2007-3949
CVE-2007-3950
CVE-2007-4727
DSA-1362-1
Platform(s)
:
Debian GNU/Linux 4.0
Product(s)
:
lighttpd
Definition Synopsis
Debian GNU/Linux 4.0 is installed.
AND
lighttpd DPKG is earlier than 1.4.13-4etch4
BACK