oval:org.mitre.oval:def:13304
Definition Id: oval:org.mitre.oval:def:13304 | |||
Oval ID: | oval:org.mitre.oval:def:13304 | ||
Title: | DSA-1774-1 ejabberd -- insufficient input sanitising | ||
Description: | It was discovered that ejabberd, a distributed, fault-tolerant Jabber/XMPP server, does not sufficiently sanitise MUC logs, allowing remote attackers to perform cross-site scripting attacks. For the stable distribution, this problem has been fixed in version 2.0.1-6+lenny1. The oldstable distribution is not affected by this issue. For the testing distribution, this problem will be fixed soon. For the unstable distribution, this problem has been fixed in version 2.0.5-1. We recommend that you upgrade your ejabberd packages. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-1774-1 CVE-2009-0934 | Version: | 5 |
Platform(s): | Debian GNU/Linux 5.0 | Product(s): | ejabberd |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6513 | |||
Oval ID: | oval:org.mitre.oval:def:6513 | ||
Title: | Debian GNU/Linux 5.0 is installed | ||
Description: | Debian GNU/Linux 5.0 (lenny) is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:debian:debian_gnu/linux:5.0 | Version: | 7 |
Platform(s): | Debian GNU/Linux 5.0 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:13304 |