Oval Definition:
oval:org.mitre.oval:def:21781
Revision Date
:
2014-02-24
Version
:
36
Title
:
RHSA-2010:0651: spice-xpi security and bug fix update (Moderate)
Description
:
The SPICE (aka spice-xpi) plug-in 2.2 for Firefox allows local users to overwrite arbitrary files via a symlink attack on an unspecified log file.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CESA-2010:0651
CVE-2010-2792
CVE-2010-2794
RHSA-2010:0651-01
Platform(s)
:
CentOS Linux 5
Red Hat Enterprise Linux 5
Product(s)
:
spice-xpi
Definition Synopsis
Redhat 5 or Centos 5 release
The operating system installed on the system is Red Hat Enterprise Linux 5
OR
The operating system installed on the system is CentOS Linux 5.x
AND
spice-xpi is earlier than 0:2.2-2.3.el5_5
BACK