oval:org.mitre.oval:def:23958

Definition Id: oval:org.mitre.oval:def:23958

Oval ID:	oval:org.mitre.oval:def:23958
Title:	ELSA-2014:0151: wget security and bug fix update (Low)
Description:	GNU Wget 1.12 and earlier uses a server-provided filename instead of the original URL to determine the destination filename of a download, which allows remote servers to create or overwrite arbitrary files via a 3xx redirect to a URL with a .wgetrc filename followed by a 3xx redirect to a URL with a crafted filename, and possibly execute arbitrary code as a consequence of writing to a dotfile in a home directory.
Family:	unix	Class:	patch
Reference(s):	ELSA-2014:0151-00 CVE-2010-2252	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	wget
Definition Synopsis:
wget is earlier than 0:1.12-1.11.el6_5 AND Oracle Linux 6.x

Definition Id: oval:org.mitre.oval:def:16594

Oval ID:	oval:org.mitre.oval:def:16594
Title:	Oracle Linux 6.x
Description:	The operating system installed on the system is Oracle Linux 6.x
Family:	unix	Class:	inventory
Reference(s):	cpe:/o:oracle:linux:6	Version:	5
Platform(s):	Oracle Linux 6	Product(s):
Definition Synopsis:
the installed operating system is part of the Unix family AND Oracle Linux 6.x is installed
Referenced By:
oval:org.mitre.oval:def:23958