oval:org.mitre.oval:def:19260

Definition Id: oval:org.mitre.oval:def:19260
 
Oval ID: oval:org.mitre.oval:def:19260
Title: DSA-2455-1 typo3-src - cross site scripting
Description: Helmut Hummel of the TYPO3 security team discovered that TYPO3, a web content management system, is not properly sanitising output of the exception handler. This allows an attacker to conduct cross-site scripting attacks if either third-party extensions are installed that do not sanitise this output on their own or in the presence of extensions using the extbase MVC framework which accept objects to controller actions.
Family: unix Class: patch
Reference(s): DSA-2455-1
CVE-2012-2112
Version: 5
Platform(s): Debian GNU/Linux 6.0
Debian GNU/kFreeBSD 6.0
Product(s): typo3-src
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:12959
 
Oval ID: oval:org.mitre.oval:def:12959
Title: Debian 6.0 is installed
Description: Debian 6.0 (squeeze) is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian:6.0
Version: 6
Platform(s): Debian 6.0
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:19260
Definition Id: oval:org.mitre.oval:def:24894
 
Oval ID: oval:org.mitre.oval:def:24894
Title: Debian GNU/Linux is installed
Description: Debian GNU/Linux is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/linux
Version: 3
Platform(s): Debian GNU/Linux
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:19260
Definition Id: oval:org.mitre.oval:def:24698
 
Oval ID: oval:org.mitre.oval:def:24698
Title: Debian GNU/kFreeBSD is installed
Description: Debian GNU/kFreeBSD is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/kfreebsd
Version: 3
Platform(s): Debian GNU/kFreeBSD
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:19260