Oval Definition:
oval:org.mitre.oval:def:8251
Revision Date
:
2014-06-23
Version
:
18
Title
:
DSA-1560 kronolith2 -- insufficient input sanitising
Description
:
"The-0utl4w" discovered that the Kronolith, calendar component for the Horde Framework, didn't properly sanitise URL input, leading to a cross-site scripting vulnerability in the add event screen.
Family
:
unix
Class
:
patch
Status
:
ACCEPTED
Reference(s)
:
CVE-2008-1974
DSA-1560
Platform(s)
:
Debian GNU/Linux 4.0
Product(s)
:
kronolith2
Definition Synopsis
Debian GNU/Linux 4.0 is installed.
AND
Installed architecture is all
AND
kronolith2 is earlier than 2.1.4-1etch1
BACK