Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2012-1177HistoryAug 26, 2012 - 8:55 p.m.
CVE-2012-1177
2012-08-2620:55:00
Debian Security Bug Tracker
security-tracker.debian.org
12
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.5%
libgdata before 0.10.2 and 0.11.x before 0.11.1 does not validate SSL certificates, which allows remote attackers to obtain user names and passwords via a man-in-the-middle (MITM) attack with a spoofed certificate.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | libgdata | < 0.10.2-1 | libgdata_0.10.2-1_all.deb |
| Debian | 11 | all | libgdata | < 0.10.2-1 | libgdata_0.10.2-1_all.deb |
| Debian | 999 | all | libgdata | < 0.10.2-1 | libgdata_0.10.2-1_all.deb |
| Debian | 13 | all | libgdata | < 0.10.2-1 | libgdata_0.10.2-1_all.deb |
Related
ubuntucve
ubuntucve
CVE-2012-1177
2012-03-19 00:00:00
cvelist
cvelist
CVE-2012-1177
2012-08-26 20:00:00
nessus
nessus
Debian DSA-2482-1 : libgdata - insufficient certificate validation
2012-06-29 00:00:00
Mandriva Linux Security Advisory : libgdata (MDVSA-2012:111)
2012-09-06 00:00:00
GLSA-201208-06 : libgdata: Man-in-the-Middle attack
2012-08-15 00:00:00
openvas
openvas
Ubuntu Update for libgdata USN-1547-1
2012-09-06 00:00:00
Ubuntu: Security Advisory (USN-1547-1)
2012-09-06 00:00:00
Gentoo Security Advisory GLSA 201208-06 (libgdata)
2012-08-30 00:00:00
gentoo
gentoo
libgdata: Man-in-the-Middle attack
2012-08-14 00:00:00
ubuntu
ubuntu
libGData, evolution-data-server vulnerability
2012-08-28 00:00:00
securityvulns
securityvulns
libgdata certificate spoofing
2012-09-02 00:00:00
[USN-1547-1] libGData, evolution-data-server vulnerability
2012-09-02 00:00:00
prion
prion
Code injection
2012-08-26 20:55:00
nvd
nvd
CVE-2012-1177
2012-08-26 20:55:00
cve
cve
CVE-2012-1177
2012-08-26 20:55:00
5.1 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.01 Low
EPSS
Percentile
83.5%
Related for DEBIANCVE:CVE-2012-1177