Lucene search

K
nvd[email protected]NVD:CVE-2009-1358
HistoryApr 21, 2009 - 11:30 p.m.

CVE-2009-1358

2009-04-2123:30:00
web.nvd.nist.gov
10

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.023

Percentile

89.7%

apt-get in apt before 0.7.21 does not check for the correct error code from gpgv, which causes apt to treat a repository as valid even when it has been signed with a key that has been revoked or expired, which might allow remote attackers to trick apt into installing malicious repositories.

Affected configurations

Nvd
Node
debianadvanced_package_toolRange≤0.7.20
OR
debianadvanced_package_toolMatch0.7.0
OR
debianadvanced_package_toolMatch0.7.1
OR
debianadvanced_package_toolMatch0.7.2
OR
debianadvanced_package_toolMatch0.7.2-0.1
OR
debianadvanced_package_toolMatch0.7.10
OR
debianadvanced_package_toolMatch0.7.11
OR
debianadvanced_package_toolMatch0.7.12
OR
debianadvanced_package_toolMatch0.7.13
OR
debianadvanced_package_toolMatch0.7.14
OR
debianadvanced_package_toolMatch0.7.15
OR
debianadvanced_package_toolMatch0.7.15exp1
OR
debianadvanced_package_toolMatch0.7.15exp2
OR
debianadvanced_package_toolMatch0.7.15exp3
OR
debianadvanced_package_toolMatch0.7.16
OR
debianadvanced_package_toolMatch0.7.17
OR
debianadvanced_package_toolMatch0.7.17exp1
OR
debianadvanced_package_toolMatch0.7.17exp2
OR
debianadvanced_package_toolMatch0.7.17exp3
OR
debianadvanced_package_toolMatch0.7.17exp4
OR
debianadvanced_package_toolMatch0.7.18
OR
debianadvanced_package_toolMatch0.7.19
OR
debianadvanced_package_toolMatch0.7.20.1
OR
debianadvanced_package_toolMatch0.7.20.2
OR
debianadvanced_package_toolMatch0.7.21
OR
debianaptMatch0.0.1
OR
debianaptMatch0.0.2
OR
debianaptMatch0.0.3
OR
debianaptMatch0.0.4
OR
debianaptMatch0.0.5
OR
debianaptMatch0.0.6
OR
debianaptMatch0.0.7
OR
debianaptMatch0.0.8
OR
debianaptMatch0.0.9
OR
debianaptMatch0.0.10
OR
debianaptMatch0.0.11
OR
debianaptMatch0.0.12
OR
debianaptMatch0.0.13
OR
debianaptMatch0.0.13-bo1
OR
debianaptMatch0.0.14
OR
debianaptMatch0.0.15
OR
debianaptMatch0.0.15-0.1bo
OR
debianaptMatch0.0.15-0.2bo
OR
debianaptMatch0.0.16-1
OR
debianaptMatch0.0.17-1
OR
debianaptMatch0.1
OR
debianaptMatch0.1.1
OR
debianaptMatch0.1.3
OR
debianaptMatch0.1.5
OR
debianaptMatch0.1.6
OR
debianaptMatch0.1.7
OR
debianaptMatch0.1.9
OR
debianaptMatch0.3.0
OR
debianaptMatch0.3.1
OR
debianaptMatch0.3.2
OR
debianaptMatch0.3.3
OR
debianaptMatch0.3.4
OR
debianaptMatch0.3.6
OR
debianaptMatch0.3.7
OR
debianaptMatch0.3.9
OR
debianaptMatch0.3.11
OR
debianaptMatch0.3.12
OR
debianaptMatch0.3.13
OR
debianaptMatch0.3.14
OR
debianaptMatch0.3.15
OR
debianaptMatch0.3.16
OR
debianaptMatch0.3.17
OR
debianaptMatch0.3.18
OR
debianaptMatch0.3.19
OR
debianaptMatch0.5.0
OR
debianaptMatch0.5.1
OR
debianaptMatch0.5.2
OR
debianaptMatch0.5.3
OR
debianaptMatch0.5.4
OR
debianaptMatch0.5.5
OR
debianaptMatch0.5.5.1
OR
debianaptMatch0.5.6
OR
debianaptMatch0.5.7
OR
debianaptMatch0.5.8
OR
debianaptMatch0.5.9
OR
debianaptMatch0.5.10
OR
debianaptMatch0.5.11
OR
debianaptMatch0.5.12
OR
debianaptMatch0.5.13
OR
debianaptMatch0.5.14
OR
debianaptMatch0.5.15
OR
debianaptMatch0.5.16
OR
debianaptMatch0.5.17
OR
debianaptMatch0.5.18
OR
debianaptMatch0.5.19
OR
debianaptMatch0.5.20
OR
debianaptMatch0.5.21
OR
debianaptMatch0.5.22
OR
debianaptMatch0.5.23
OR
debianaptMatch0.5.24
OR
debianaptMatch0.5.25
OR
debianaptMatch0.5.26
OR
debianaptMatch0.5.27
OR
debianaptMatch0.5.28
OR
debianaptMatch0.5.29
OR
debianaptMatch0.5.30
OR
debianaptMatch0.5.30ubuntu1
OR
debianaptMatch0.5.30ubuntu2
OR
debianaptMatch0.5.31
OR
debianaptMatch0.5.32
OR
debianaptMatch0.6.0
OR
debianaptMatch0.6.1
OR
debianaptMatch0.6.2
OR
debianaptMatch0.6.3
OR
debianaptMatch0.6.4
OR
debianaptMatch0.6.5
OR
debianaptMatch0.6.6
OR
debianaptMatch0.6.7
OR
debianaptMatch0.6.8
OR
debianaptMatch0.6.9
OR
debianaptMatch0.6.10
OR
debianaptMatch0.6.11
OR
debianaptMatch0.6.12
OR
debianaptMatch0.6.13
OR
debianaptMatch0.6.14
OR
debianaptMatch0.6.15
OR
debianaptMatch0.6.16
OR
debianaptMatch0.6.17
OR
debianaptMatch0.6.18
OR
debianaptMatch0.6.19
OR
debianaptMatch0.6.20
OR
debianaptMatch0.6.21
OR
debianaptMatch0.6.22
OR
debianaptMatch0.6.23
OR
debianaptMatch0.6.24
OR
debianaptMatch0.6.25
OR
debianaptMatch0.6.27
OR
debianaptMatch0.6.27ubuntu1
OR
debianaptMatch0.6.27ubuntu2
OR
debianaptMatch0.6.27ubuntu3
OR
debianaptMatch0.6.27ubuntu4
OR
debianaptMatch0.6.28
OR
debianaptMatch0.6.29
OR
debianaptMatch0.6.30
OR
debianaptMatch0.6.31
OR
debianaptMatch0.6.32
OR
debianaptMatch0.6.33
OR
debianaptMatch0.6.34
OR
debianaptMatch0.6.35
OR
debianaptMatch0.6.36
OR
debianaptMatch0.6.36ubuntu1
OR
debianaptMatch0.6.37
OR
debianaptMatch0.6.38
OR
debianaptMatch0.6.39
OR
debianaptMatch0.6.40
OR
debianaptMatch0.6.40.1
OR
debianaptMatch0.6.41
OR
debianaptMatch0.6.42
OR
debianaptMatch0.6.42.1
OR
debianaptMatch0.6.42.2
OR
debianaptMatch0.6.42.3
OR
debianaptMatch0.6.43
OR
debianaptMatch0.6.43.1
OR
debianaptMatch0.6.43.2
OR
debianaptMatch0.6.43.3
OR
debianaptMatch0.6.44
OR
debianaptMatch0.6.44.1
OR
debianaptMatch0.6.44.1-0.1
OR
debianaptMatch0.6.44.2
OR
debianaptMatch0.6.44.2exp1
OR
debianaptMatch0.6.45
OR
debianaptMatch0.6.46
OR
debianaptMatch0.6.46.1
OR
debianaptMatch0.6.46.2
OR
debianaptMatch0.6.46.3
OR
debianaptMatch0.6.46.3-0.1
OR
debianaptMatch0.6.46.3-0.2
OR
debianaptMatch0.6.46.4-0.1
OR
debianaptMatch0.7.3
OR
debianaptMatch0.7.4
OR
debianaptMatch0.7.5
OR
debianaptMatch0.7.6
OR
debianaptMatch0.7.7
OR
debianaptMatch0.7.8
OR
debianaptMatch0.7.9
VendorProductVersionCPE
debianadvanced_package_tool*cpe:2.3:a:debian:advanced_package_tool:*:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.0cpe:2.3:a:debian:advanced_package_tool:0.7.0:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.1cpe:2.3:a:debian:advanced_package_tool:0.7.1:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.2cpe:2.3:a:debian:advanced_package_tool:0.7.2:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.2-0.1cpe:2.3:a:debian:advanced_package_tool:0.7.2-0.1:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.10cpe:2.3:a:debian:advanced_package_tool:0.7.10:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.11cpe:2.3:a:debian:advanced_package_tool:0.7.11:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.12cpe:2.3:a:debian:advanced_package_tool:0.7.12:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.13cpe:2.3:a:debian:advanced_package_tool:0.7.13:*:*:*:*:*:*:*
debianadvanced_package_tool0.7.14cpe:2.3:a:debian:advanced_package_tool:0.7.14:*:*:*:*:*:*:*
Rows per page:
1-10 of 1801

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.023

Percentile

89.7%