oval:org.mitre.oval:def:13493

Definition Id: oval:org.mitre.oval:def:13493
 
Oval ID: oval:org.mitre.oval:def:13493
Title: DSA-2041-1 mediawiki -- CSRF
Description: It was discovered that mediawiki, a website engine for collaborative work, is vulnerable to a Cross-Site Request Forgery login attack, which could be used to conduct phishing or similar attacks to users via affected mediawiki installations. Note that the fix used breaks the login API and may require clients using it to be updated. For the stable distribution, this problem has been fixed in version 1:1.12.0-2lenny5. For the testing distribution and the unstable distribution , this problem has been fixed in version 1:1.15.3-1. We recommend that you upgrade your mediawiki packages.
Family: unix Class: patch
Reference(s): DSA-2041-1
CVE-2010-1150
Version: 5
Platform(s): Debian GNU/Linux 5.0
Product(s): mediawiki
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:6513
 
Oval ID: oval:org.mitre.oval:def:6513
Title: Debian GNU/Linux 5.0 is installed
Description: Debian GNU/Linux 5.0 (lenny) is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/linux:5.0
Version: 7
Platform(s): Debian GNU/Linux 5.0
Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:13493