Summary
The remote host is missing an update to raptor
announced via advisory DSA 2438-1.
Solution
https://secure1.securityspace.com/smysecure/catid.html?in=DSA%202438-1
Insight
It was discovered that Raptor, a RDF parser and serializer library, allows file inclusion through XML entities, resulting in information disclosure.
For the stable distribution (squeeze), this problem has been fixed in version 1.4.21-2+squeeze1.
For the unstable distribution (sid), this problem will be fixed soon.
We recommend that you upgrade your raptor packages.
Severity
Classification
-
CVE CVE-2012-0037 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:P/I:N/A:N
Related Vulnerabilities