Oval Definition:oval:org.mitre.oval:def:7408
Revision Date:2014-06-23Version:17
Title:DSA-1467 mantis -- several vulnerabilities
Description:Several remote vulnerabilities have been discovered in Mantis, a web based bug tracking system. The Common Vulnerabilities and Exposures project identifies the following problems: Custom fields were not appropriately protected by per-item access control, allowing for sensitive data to be published. Multiple cross site scripting issues allowed a remote attacker to insert malicious HTML or web script into Mantis web pages.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2006-6574
CVE-2007-6611
DSA-1467
Platform(s):Debian GNU/Linux 3.1
Product(s):mantis
Definition Synopsis
  • Debian GNU/Linux 3.1 is installed
  • AND Installed architecture is all
  • AND mantis is earlier than 0.19.2-5sarge5
  • BACK