4 matches found
CVE-2013-1058
The CVE-2013-1058 entry affects MAAS: the component maas-import-pxe-files in MAAS prior to 13.10 does not cryptographically verify downloaded content, allowing an attacker to modify images via a MITM. Impact: potential integrity compromise of downloaded PXE/boot data. Affected version line is MAA...
Ubuntu: Security Advisory (USN-2013-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 12.04 LTS / 12.10 / 13.04 : maas vulnerabilities (USN-2013-1)
It was discovered that maas-import-pxe-files incorrectly loaded configuration information from the current working directory. A local attacker could execute code as an administrator if maas-import-pxe-files were run from an attacker-controlled directory. CVE-2013-1057 It was discovered that...
CVE-2013-1058
maas-import-pxe-files in MAAS before 13.10 does not verify the integrity of downloaded files, which allows remote attackers to modify these files via a man-in-the-middle MITM attack...