Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntuUbuntuUSN-1444-1
HistoryMay 17, 2012 - 12:00 a.m.

BackupPC vulnerability

2012-05-1700:00:00
ubuntu.com
25

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.1%

JSON

Releases

  • Ubuntu 12.04
  • Ubuntu 11.10
  • Ubuntu 11.04
  • Ubuntu 10.04
  • Ubuntu 8.04

Packages

  • backuppc - high-performance, enterprise-grade system for backing up PCs

Details

It was discovered that BackupPC did not properly sanitize its input when
processing RestoreFile error messages, resulting in a cross-site
scripting (XSS) vulnerability. With cross-site scripting vulnerabilities,
if a user were tricked into viewing server output during a crafted server
request, a remote attacker could exploit this to modify the contents, or
steal confidential data, within the same domain.

OSVersionArchitecturePackageVersionFilename
Ubuntu8.04noarchbackuppc< 3.0.0-4ubuntu1.4UNKNOWN
Ubuntu12.04noarchbackuppc< 3.2.1-2ubuntu1.1UNKNOWN
Ubuntu11.10noarchbackuppc< 3.2.1-1ubuntu1.2UNKNOWN
Ubuntu11.04noarchbackuppc< 3.2.0-3ubuntu4.3UNKNOWN
Ubuntu10.04noarchbackuppc< 3.1.0-9ubuntu1.3UNKNOWN

Related

cve 1
nessus 4
openvas 5
ubuntucve 1
fedora 2
prion 1
cvelist 1
debiancve 1
securityvulns 1
nvd 1
cve
cve
CVE-2011-5081
2012-02-18 00:55:02
nessus
nessus
Fedora 17 : BackupPC-3.2.1-10.fc17 (2012-20968)
2013-01-07 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : backuppc vulnerability (USN-1444-1)
2012-05-18 00:00:00
Fedora 18 : BackupPC-3.2.1-10.fc18 (2012-20943)
2013-01-14 00:00:00
openvas
openvas
Ubuntu Update for backuppc USN-1444-1
2012-05-22 00:00:00
Fedora Update for BackupPC FEDORA-2012-20968
2013-01-08 00:00:00
Ubuntu: Security Advisory (USN-1444-1)
2012-05-22 00:00:00
ubuntucve
ubuntucve
CVE-2011-5081
2012-02-17 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: BackupPC-3.2.1-10.fc17
2013-01-05 06:55:36
[SECURITY] Fedora 18 Update: BackupPC-3.2.1-10.fc18
2013-01-11 23:56:07
prion
prion
Cross site scripting
2012-02-18 00:55:00
cvelist
cvelist
CVE-2011-5081
2012-02-18 00:00:00
debiancve
debiancve
CVE-2011-5081
2012-02-18 00:55:02
securityvulns
securityvulns
[USN-1444-1] BackupPC vulnerability
2012-07-09 00:00:00
nvd
nvd
CVE-2011-5081
2012-02-18 00:55:02

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.1%

JSON
Related for USN-1444-1
cve1nessus4openvas5ubuntucve1fedora2prion1cvelist1debiancve1securityvulns1nvd1