Oval Definition:
oval:org.opensuse.security:def:20132074
Revision Date
:
2022-06-30
Version
:
1
Title
:
CVE-2013-2074
Description
:
kioslave/http/http.cpp in KIO in kdelibs 4.10.3 and earlier allows attackers to discover credentials via a crafted request that triggers an "internal server error," which includes the username and password in an error message.
Family
:
unix
Class
:
vulnerability
Status
:
Reference(s)
:
Mitre CVE-2013-2074
SUSE CVE-2013-2074
Platform(s)
:
openSUSE Tumbleweed
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP3
Product(s)
:
Definition Synopsis
openSUSE Tumbleweed is installed
AND
Package Information
kdelibs3-3.5.10-89.3 is installed
OR
kdelibs3-32bit-3.5.10-89.3 is installed
OR
kdelibs3-arts-3.5.10-89.3 is installed
OR
kdelibs3-arts-32bit-3.5.10-89.3 is installed
OR
kdelibs3-default-style-3.5.10-89.3 is installed
OR
kdelibs3-default-style-32bit-3.5.10-89.3 is installed
OR
kdelibs3-devel-3.5.10-89.3 is installed
OR
kdelibs3-doc-3.5.10-89.3 is installed
Definition Synopsis
Release Information
SUSE Linux Enterprise Server 11 SP1 is installed
OR
SUSE Linux Enterprise Server 11 SP3 is installed
AND
kdelibs4 is affected
BACK