oval:org.mitre.oval:def:13667
Definition Id: oval:org.mitre.oval:def:13667 | |||
Oval ID: | oval:org.mitre.oval:def:13667 | ||
Title: | DSA-1913-1 bugzilla -- SQL injection vulnerability | ||
Description: | Max Kanat-Alexander, Bradley Baetz, and Frédéric Buclin discovered an SQL injection vulnerability in the Bug.create WebService function in Bugzilla, a web-based bug tracking system, which allows remote attackers to execute arbitrary SQL commands. For the stable distribution, this problem has been fixed in version 3.0.4.1-2+lenny2. The oldstable distribution isn’t affected by this problem. For the testing distribution and the unstable distribution , this problem will be fixed soon. We recommend that you upgrade your bugzilla packages. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-1913-1 CVE-2009-3165 | Version: | 5 |
Platform(s): | Debian GNU/Linux 5.0 | Product(s): | bugzilla |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:6513 | |||
Oval ID: | oval:org.mitre.oval:def:6513 | ||
Title: | Debian GNU/Linux 5.0 is installed | ||
Description: | Debian GNU/Linux 5.0 (lenny) is installed | ||
Family: | unix | Class: | inventory |
Reference(s): | cpe:/o:debian:debian_gnu/linux:5.0 | Version: | 7 |
Platform(s): | Debian GNU/Linux 5.0 | Product(s): | |
Definition Synopsis: | |||
Referenced By: | |||
oval:org.mitre.oval:def:13667 |