oval:org.mitre.oval:def:19867

Definition Id: oval:org.mitre.oval:def:19867
 
Oval ID: oval:org.mitre.oval:def:19867
Title: DSA-2801-1 libhttp-body-perl - design error
Description: Jonathan Dolle reported a design error in HTTP::Body, a Perl module for processing data from HTTP POST requests. The HTTP body multipart parser creates temporary files which preserve the suffix of the uploaded file. An attacker able to upload files to a service that uses HTTP::Body::Multipart could potentially execute commands on the server if these temporary filenames are used in subsequent commands without further checks.
Family: unix Class: patch
Reference(s): DSA-2801-1
CVE-2013-4407
 Version: 5
Platform(s): Debian GNU/Linux 7
Debian GNU/kFreeBSD 7
 Product(s): libhttp-body-perl
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:19338
 
Oval ID: oval:org.mitre.oval:def:19338
Title: Debian 7 is installed
Description: Debian 7 (wheezy) is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian:7
 Version: 7
Platform(s): Debian 7
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:19867
Definition Id: oval:org.mitre.oval:def:24894
 
Oval ID: oval:org.mitre.oval:def:24894
Title: Debian GNU/Linux is installed
Description: Debian GNU/Linux is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/linux
 Version: 3
Platform(s): Debian GNU/Linux
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:19867
Definition Id: oval:org.mitre.oval:def:24698
 
Oval ID: oval:org.mitre.oval:def:24698
Title: Debian GNU/kFreeBSD is installed
Description: Debian GNU/kFreeBSD is installed
Family: unix Class: inventory
Reference(s): cpe:/o:debian:debian_gnu/kfreebsd
 Version: 3
Platform(s): Debian GNU/kFreeBSD
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:19867