Oval Definition:	oval:org.mitre.oval:def:20773
Revision Date: 2014-02-17 Version: 52 Title: RHSA-2013:0769: glibc security and bug fix update (Low) Description: ModSecurity before 2.7.3 allows remote attackers to read arbitrary files, send HTTP requests to intranet servers, or cause a denial of service (CPU and memory consumption) via an XML external entity declaration in conjunction with an entity reference, aka an XML External Entity (XXE) vulnerability. Family: unix Class: patch Status: ACCEPTED Reference(s): CESA-2013:0769 CVE-2013-0242 CVE-2013-1914 CVE-2013-1915 RHSA-2013:0769-01 Platform(s): CentOS Linux 5 Red Hat Enterprise Linux 5 Product(s): glibc Definition Synopsis Redhat 5 or Centos 5 release The operating system installed on the system is Red Hat Enterprise Linux 5 OR The operating system installed on the system is CentOS Linux 5.x AND Packages section glibc-common is earlier than 0:2.5-107.el5_9.4 OR nscd is earlier than 0:2.5-107.el5_9.4 OR glibc-utils is earlier than 0:2.5-107.el5_9.4 OR glibc-devel is earlier than 0:2.5-107.el5_9.4 OR glibc is earlier than 0:2.5-107.el5_9.4 OR glibc-headers is earlier than 0:2.5-107.el5_9.4
BACK