Lucene search
UbuntuUSN-1270-1HistoryNov 21, 2011 - 12:00 a.m.
Software Center vulnerability
2011-11-2100:00:00
ubuntu.com
35
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.013
Percentile
86.1%
Releases
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.10
Packages
- software-center - Utility for browsing, installing, and removing applications
Details
David B. discovered that Software Center incorrectly validated server
certificates when performing secure connections. If a remote attacker were
able to perform a machine-in-the-middle attack, this flaw could be exploited to
view sensitive information or install altered packages and repositories.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 11.10 | noarch | software-center | < 5.0.2ubuntu0.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | software-center | < 4.0.5ubuntu0.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | software-center | < 3.0.10ubuntu0.1 | UNKNOWN |
References
Related
openvas
openvas
Ubuntu: Security Advisory (USN-1270-1)
2011-11-25 00:00:00
Ubuntu Update for software-center USN-1270-1
2011-11-25 00:00:00
securityvulns
securityvulns
[USN-1270-1] Software Center vulnerability
2011-11-27 00:00:00
Software Center certificate spoofing
2011-11-27 00:00:00
nessus
nessus
Ubuntu 10.10 / 11.04 / 11.10 : software-center vulnerability (USN-1270-1)
2011-11-22 00:00:00
nvd
nvd
CVE-2011-3150
2011-11-29 17:55:00
ubuntucve
ubuntucve
CVE-2011-3150
2011-11-21 00:00:00
prion
prion
Code injection
2011-11-29 17:55:00
cvelist
cvelist
CVE-2011-3150
2011-11-29 17:00:00
cve
cve
CVE-2011-3150
2011-11-29 17:55:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.013
Percentile
86.1%
Related for USN-1270-1