oval:org.mitre.oval:def:7699
Definition Id: oval:org.mitre.oval:def:7699 | |||
Oval ID: | oval:org.mitre.oval:def:7699 | ||
Title: | DSA-1708 git-core -- shell command injection | ||
Description: | It was discovered that gitweb, the web interface for the Git version control system, contained several vulnerabilities: Remote attackers could use crafted requests to execute shell commands on the web server, using the snapshot generation and pickaxe search functionality (CVE-2008-5916). Local users with write access to the configuration of a Git repository served by gitweb could cause gitweb to execute arbitrary shell commands with the permission of the web server (CVE-2008-5516, CVE-2008-5517). | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-1708 CVE-2008-5516 CVE-2008-5517 CVE-2008-5916 | Version: | 5 |
Platform(s): | Debian GNU/Linux 4.0 | Product(s): | git-core |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6461 | |||
Oval ID: | oval:org.mitre.oval:def:6461 | ||
Title: | Debian GNU/Linux 4.0 is installed. | ||
Description: | Debian GNU/Linux 4.0 (etch) is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:debian:debian_gnu/linux:4.0 | Version: | 9 |
Platform(s): | Debian GNU/Linux 4.0 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:7699 |