oval:org.mitre.oval:def:13667

Definition Id: oval:org.mitre.oval:def:13667
 
Oval ID: oval:org.mitre.oval:def:13667
Title: DSA-1913-1 bugzilla -- SQL injection vulnerability
Description: Max Kanat-Alexander, Bradley Baetz, and Frédéric Buclin discovered an SQL injection vulnerability in the Bug.create WebService function in Bugzilla, a web-based bug tracking system, which allows remote attackers to execute arbitrary SQL commands. For the stable distribution, this problem has been fixed in version 3.0.4.1-2+lenny2. The oldstable distribution isn’t affected by this problem. For the testing distribution and the unstable distribution , this problem will be fixed soon. We recommend that you upgrade your bugzilla packages.
Family: unix Class: patch
Reference(s): DSA-1913-1
CVE-2009-3165
Version: 5
Platform(s): Debian GNU/Linux 5.0
Product(s): bugzilla
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:6513
 
Oval ID: oval:org.mitre.oval:def:6513
Title: Debian GNU/Linux 5.0 is installed
Description: Debian GNU/Linux 5.0 (lenny) is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/linux:5.0
Version: 7
Platform(s): Debian GNU/Linux 5.0
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13667