oval:org.mitre.oval:def:21103

Definition Id: oval:org.mitre.oval:def:21103

Oval ID:	oval:org.mitre.oval:def:21103
Title:	RHSA-2013:0269: axis security update (Moderate)
Description:	Apache Axis 1.4 and earlier, as used in PayPal Payments Pro, PayPal Mass Pay, PayPal Transactional Information SOAP, the Java Message Service implementation in Apache ActiveMQ, and other products, does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers via an arbitrary valid certificate.
Family:	unix	Class:	patch
Reference(s):	RHSA-2013:0269-02 CVE-2012-5784	Version:	4
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	axis
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section axis is earlier than 0:1.2.1-7.3.el6_3 AND axis-manual is earlier than 0:1.2.1-7.3.el6_3 AND axis-javadoc is earlier than 0:1.2.1-7.3.el6_3

Definition Id: oval:org.mitre.oval:def:20273

Oval ID:	oval:org.mitre.oval:def:20273
Title:	The operating system installed on the system is Red Hat Enterprise Linux 6
Description:	The operating system installed on the system is Red Hat Enterprise Linux 6.
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:redhat:enterprise_linux:6	Version:	6
Platform(s):	Red Hat Enterprise Linux 6	Product(s):
Definition Synopsis:
Red Hat Enterprise 6 is installed AND NOT Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:21103