Lucene search
K

82 matches found

OpenVAS
OpenVAS
added 2012/12/18 12:0 a.m.25 views

Ubuntu Update for aptdaemon USN-1666-1

Ubuntu Update for Linux kernel vulnerabilities USN-1666-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN16661.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for aptdaemon USN-1666-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net Th...

4.3CVSS6.7AI score0.018EPSS
Exploits0References2
securityvulns
securityvulns
added 2012/12/18 12:0 a.m.35 views

aptdaemon key validation vulnerability

PPA GPG key is validated incorrectly...

4.3CVSS2.5AI score0.018EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2012/12/18 12:0 a.m.27 views

Ubuntu 11.10 / 12.04 LTS : aptdaemon vulnerability (USN-1666-1)

It was discovered that Aptdaemon incorrectly validated PPA GPG keys when importing from a keyserver. If a remote attacker were able to perform a man-in-the-middle attack, this flaw could be exploited to install altered package repository GPG keys. Note that Tenable Network Security has extracted...

4.3CVSS5.5AI score0.018EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/12/18 12:0 a.m.22 views

Ubuntu: Security Advisory (USN-1666-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.7AI score0.018EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2012/12/17 2:3 p.m.53 views

USN-1666-1: Aptdaemon vulnerability

It was discovered that Aptdaemon incorrectly validated PPA GPG keys when importing from a keyserver. If a remote attacker were able to perform a machine-in-the-middle attack, this flaw could be exploited to install altered package repository GPG keys...

4.3CVSS5.5AI score0.018EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/12/17 12:0 a.m.48 views

CVE-2012-0962

Aptdaemon 0.43 in Ubuntu 11.10 and 12.04 LTS uses short IDs when importing PPA GPG keys from a keyserver, which allows remote attackers to install arbitrary package repository GPG keys via a man-in-the-middle MITM attack...

4.3CVSS5.9AI score0.018EPSS
Exploits0References2
NVD
NVD
added 2012/06/04 8:55 p.m.21 views

CVE-2012-0944

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack...

4.3CVSS6.5AI score0.01211EPSS
Exploits0References6
Prion
Prion
added 2012/06/04 8:55 p.m.19 views

Code injection

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack...

4.3CVSS7.1AI score0.01211EPSS
Exploits0References6Affected Software2
CVE
CVE
added 2012/06/04 8:0 p.m.61 views

CVE-2012-0944

Apt daemon (Aptdaemon) versions 0.43 and earlier on Ubuntu 11.04, 11.10, and 12.04 LTS do not authenticate packages when a transaction is not simulated, enabling a remote attacker to install arbitrary packages via a man-in-the-middle attack. The vulnerability is caused by insufficient authenticat...

4.3CVSS6.7AI score0.01211EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2012/06/04 8:0 p.m.20 views

CVE-2012-0944

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack...

6.5AI score0.01211EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2012/04/05 12:0 a.m.20 views

Ubuntu Update for aptdaemon USN-1414-1

Ubuntu Update for Linux kernel vulnerabilities USN-1414-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14141.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for aptdaemon USN-1414-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net Th...

4.3CVSS6.7AI score0.01211EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/04/05 12:0 a.m.16 views

Ubuntu: Security Advisory (USN-1414-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.8AI score0.01211EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2012/04/03 12:0 a.m.24 views

Ubuntu 11.04 / 11.10 : aptdaemon vulnerability (USN-1414-1)

It was discovered that Aptdaemon incorrectly handled installing packages without performing a transaction simulation. An attacker could possibly use this flaw to install altered packages. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...

4.3CVSS5.5AI score0.01211EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2012/04/02 4:54 p.m.42 views

USN-1414-1: Aptdaemon vulnerability

It was discovered that Aptdaemon incorrectly handled installing packages without performing a transaction simulation. An attacker could possibly use this flaw to install altered packages...

4.3CVSS5.4AI score0.01211EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2012/04/02 12:0 a.m.41 views

CVE-2012-0944

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack...

4.3CVSS6AI score0.01211EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2011/02/28 12:0 a.m.21 views

Ubuntu Update for aptdaemon vulnerability USN-1068-1

Ubuntu Update for Linux kernel vulnerabilities USN-1068-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10681.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for aptdaemon vulnerability USN-1068-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...

4.9CVSS6.7AI score0.00392EPSS
Exploits0References2
NVD
NVD
added 2011/02/23 7:0 p.m.23 views

CVE-2011-0725

Absolute path traversal vulnerability in the org.debian.apt.UpdateCachePartially method in worker.py in Aptdaemon 0.40 in Ubuntu 10.10 and 11.04 allows local users to read arbitrary files via a full pathname in the sourceslist argument, related to the D-Bus interface...

4.9CVSS6.2AI score0.00392EPSS
Exploits0References6
Prion
Prion
added 2011/02/23 7:0 p.m.15 views

Path traversal

Absolute path traversal vulnerability in the org.debian.apt.UpdateCachePartially method in worker.py in Aptdaemon 0.40 in Ubuntu 10.10 and 11.04 allows local users to read arbitrary files via a full pathname in the sourceslist argument, related to the D-Bus interface...

4.9CVSS6.7AI score0.00392EPSS
Exploits0References6Affected Software2
CVE
CVE
added 2011/02/23 6:0 p.m.75 views

CVE-2011-0725

The CVE-2011-0725 entry concerns Aptdaemon 0.40 on Ubuntu 10.10/11.04. Affected component: org.debian.apt.UpdateCachePartially (worker.py). Root cause: improper filtering of certain D‑Bus arguments via the Aptdaemon interface, enabling an absolute path traversal. Impact: local users can read arbi...

4.9CVSS6.3AI score0.00392EPSS
Exploits0References6Affected Software2
Cvelist
Cvelist
added 2011/02/23 6:0 p.m.23 views

CVE-2011-0725

Absolute path traversal vulnerability in the org.debian.apt.UpdateCachePartially method in worker.py in Aptdaemon 0.40 in Ubuntu 10.10 and 11.04 allows local users to read arbitrary files via a full pathname in the sourceslist argument, related to the D-Bus interface...

6.1AI score0.00392EPSS
Exploits0References6
Rows per page
Query Builder