oval:org.mitre.oval:def:19664

Definition Id: oval:org.mitre.oval:def:19664

Oval ID:	oval:org.mitre.oval:def:19664
Title:	DSA-2604-1 rails - insufficient input validation
Description:	It was discovered that Rails, the Ruby web application development framework, performed insufficient validation on input parameters, allowing unintended type conversions. An attacker may use this to bypass authentication systems, inject arbitrary SQL, inject and execute arbitrary code, or perform a DoS attack on the application.
Family:	unix	Class:	patch
Reference(s):	DSA-2604-1 CVE-2013-0156	Version:	5
Platform(s):	Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	rails
Definition Synopsis:
Debian 6.0 is installed GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND rails DPKG is earlier than 0:2.3.5-1.2+squeeze4.1

Definition Id: oval:org.mitre.oval:def:12959

Oval ID:	oval:org.mitre.oval:def:12959
Title:	Debian 6.0 is installed
Description:	Debian 6.0 (squeeze) is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian:6.0	Version:	6
Platform(s):	Debian 6.0	Product(s):
Definition Synopsis:
Debian 6.0 is installed
Referenced By:
oval:org.mitre.oval:def:19664

Definition Id: oval:org.mitre.oval:def:24894

Oval ID:	oval:org.mitre.oval:def:24894
Title:	Debian GNU/Linux is installed
Description:	Debian GNU/Linux is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/linux	Version:	3
Platform(s):	Debian GNU/Linux	Product(s):
Definition Synopsis:
Debian GNU/Linux is installed
Referenced By:
oval:org.mitre.oval:def:19664

Definition Id: oval:org.mitre.oval:def:24698

Oval ID:	oval:org.mitre.oval:def:24698
Title:	Debian GNU/kFreeBSD is installed
Description:	Debian GNU/kFreeBSD is installed
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:debian:debian_gnu/kfreebsd	Version:	3
Platform(s):	Debian GNU/kFreeBSD	Product(s):
Definition Synopsis:
Debian GNU/kFreeBSD is installed
Referenced By:
oval:org.mitre.oval:def:19664