Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0834HistoryOct 03, 2022 - 4:21 p.m.
CVE-2010-0834
2022-10-0316:21:13
Debian Security Bug Tracker
security-tracker.debian.org
11
base-files package
remote code execution
ubuntu 9.10
ubuntu 10.04 lts
crafted package
authentication
dell latitude 2110 netbooks
man-in-the-middle
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
77.9%
The base-files package before 5.0.0ubuntu7.1 on Ubuntu 9.10 and before 5.0.0ubuntu20.10.04.2 on Ubuntu 10.04 LTS, as shipped on Dell Latitude 2110 netbooks, does not require authentication for package installation, which allows remote archive servers and man-in-the-middle attackers to execute arbitrary code via a crafted package.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | base-files | < 12.4+deb12u6 | base-files_12.4+deb12u6_all.deb |
| Debian | 11 | all | base-files | < 11.1+deb11u10 | base-files_11.1+deb11u10_all.deb |
| Debian | 999 | all | base-files | < 13.3 | base-files_13.3_all.deb |
| Debian | 13 | all | base-files | < 13.3 | base-files_13.3_all.deb |
Related
ubuntucve
ubuntucve
CVE-2010-0834
2010-08-05 00:00:00
openvas
openvas
Ubuntu Update for base-files vulnerability USN-968-1
2010-08-06 00:00:00
Ubuntu: Security Advisory (USN-968-1)
2010-08-06 00:00:00
nessus
nessus
Ubuntu 9.10 / 10.04 LTS : base-files vulnerability (USN-968-1)
2010-08-06 00:00:00
ubuntu
ubuntu
Dell Latitude 2110 vulnerability
2010-08-05 00:00:00
nvd
nvd
CVE-2010-0834
2010-08-10 12:23:05
prion
prion
Authentication flaw
2010-08-10 12:23:00
cve
cve
CVE-2010-0834
2022-10-03 16:21:13
cvelist
cvelist
CVE-2010-0834
2022-10-03 16:21:13
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.006 Low
EPSS
Percentile
77.9%
Related for DEBIANCVE:CVE-2010-0834