Oval Definition:	oval:org.mitre.oval:def:21951
Revision Date: 2014-02-24 Version: 56 Title: RHSA-2010:0892: openswan security update (Moderate) Description: programs/pluto/xauth.c in the client in Openswan 2.6.26 through 2.6.28 allows remote authenticated gateways to execute arbitrary commands via shell metacharacters in the cisco_banner (aka server_banner) field, a different vulnerability than CVE-2010-3308. Family: unix Class: patch Status: ACCEPTED Reference(s): CVE-2010-3302 CVE-2010-3308 CVE-2010-3752 CVE-2010-3753 RHSA-2010:0892-01 Platform(s): Red Hat Enterprise Linux 6 Product(s): openswan Definition Synopsis The operating system installed on the system is Red Hat Enterprise Linux 6 AND Packages section openswan is earlier than 0:2.6.24-8.el6_0.1 OR openswan-doc is earlier than 0:2.6.24-8.el6_0.1
BACK