Lucene search
K

68 matches found

Cvelist
Cvelist
added 2014/05/14 12:0 a.m.24 views

CVE-2011-4407

ppa.py in Software Properties before 0.81.13.3 does not validate the server certificate when downloading PPA GPG key fingerprints, which allows man-in-the-middle MITM attackers to spoof GPG keys for a package repository...

6.1AI score0.00632EPSS
Exploits0References2
CVE
CVE
added 2014/05/14 12:0 a.m.65 views

CVE-2011-4407

The CVE-2011-4407 issue affects ppa.py in Software Properties prior to version 0.81.13.3, which does not validate the server certificate when downloading PPA GPG key fingerprints. This MITM vulnerability could allow an attacker to spoof GPG keys for a package repository, potentially compromising ...

4.3CVSS6.3AI score0.00632EPSS
Exploits0References2Affected Software2
Debian CVE
Debian CVE
added 2014/05/14 12:0 a.m.34 views

CVE-2011-4407

ppa.py in Software Properties before 0.81.13.3 does not validate the server certificate when downloading PPA GPG key fingerprints, which allows man-in-the-middle MITM attackers to spoof GPG keys for a package repository...

4.3CVSS5AI score0.00632EPSS
Exploits0
NVD
NVD
added 2013/10/03 9:55 p.m.33 views

CVE-2013-1061

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProce...

4.6CVSS6.1AI score0.00361EPSS
Exploits0References7
OSV
OSV
added 2013/10/03 9:55 p.m.3 views

DEBIAN-CVE-2013-1061

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProce...

4.6CVSS6.6AI score0.00361EPSS
Exploits0References1
Prion
Prion
added 2013/10/03 9:55 p.m.29 views

Race condition

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProce...

4.6CVSS6.1AI score0.00361EPSS
Exploits0References7Affected Software2
Cvelist
Cvelist
added 2013/10/03 9:0 p.m.32 views

CVE-2013-1061

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProce...

6.4AI score0.00361EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2013/10/03 9:0 p.m.38 views

CVE-2013-1061

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProce...

4.6CVSS5AI score0.00361EPSS
Exploits0
OpenVAS
OpenVAS
added 2013/09/24 12:0 a.m.23 views

Ubuntu Update for software-properties USN-1960-1

Check for the Version of software-properties OpenVAS Vulnerability Test $Id: gbubuntuUSN19601.nasl 8494 2018-01-23 06:57:55Z teissa $ Ubuntu Update for software-properties USN-1960-1 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This...

4.6CVSS6.5AI score0.00361EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/09/24 12:0 a.m.27 views

Ubuntu: Security Advisory (USN-1960-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6.7AI score0.00361EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/09/19 12:0 a.m.33 views

Ubuntu 12.04 LTS / 12.10 / 13.04 : software-properties vulnerability (USN-1960-1)

It was discovered that Software Properties was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory...

4.6CVSS5.5AI score0.00361EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2013/09/18 2:8 p.m.55 views

USN-1960-1: Software Properties vulnerability

It was discovered that Software Properties was using polkit in an unsafe manner. A local attacker could possibly use this issue to bypass intended polkit authorizations...

4.6CVSS5.3AI score0.00361EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2013/09/18 12:0 a.m.33 views

CVE-2013-1061

dbus/SoftwarePropertiesDBus.py in Software Properties 0.92.17 before 0.92.17.3, 0.92.9 before 0.92.9.3, and 0.82.7 before 0.82.7.5 does not properly use D-Bus for communication with a polkit authority, which allows local users to bypass intended access restrictions by leveraging a PolkitUnixProce...

4.6CVSS5.9AI score0.00361EPSS
Exploits0References2
NVD
NVD
added 2012/10/10 6:55 p.m.23 views

CVE-2012-5356

The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary...

5.8CVSS6.7AI score0.01968EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2012/10/10 6:55 p.m.28 views

CVE-2012-5356

The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary...

5.8CVSS5.9AI score0.01968EPSS
Exploits0References4
Prion
Prion
added 2012/10/10 6:55 p.m.21 views

Code injection

The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary...

5.8CVSS7.1AI score0.01968EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2012/10/10 6:0 p.m.56 views

CVE-2012-5356

The CVE affects the apt-add-repository component of Ubuntu Software Properties. Versions prior to the listed fixes (0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8) fail to properly validate PPA GPG keys fetched from a key...

5.8CVSS6.9AI score0.01968EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2012/10/10 6:0 p.m.31 views

CVE-2012-5356

The apt-add-repository tool in Ubuntu Software Properties 0.75.x before 0.75.10.3, 0.80.x before 0.80.9.2, 0.81.x before 0.81.13.5, 0.82.x before 0.82.7.3, and 0.92.x before 0.92.8 does not properly check PPA GPG keys imported from a keyserver, which allows remote attackers to install arbitrary...

6.7AI score0.01968EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2012/10/03 12:0 a.m.32 views

Ubuntu Update for software-properties USN-1588-1

Ubuntu Update for Linux kernel vulnerabilities USN-1588-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN15881.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for software-properties USN-1588-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH,...

5.8CVSS6.8AI score0.01968EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2012/10/03 12:0 a.m.10 views

Ubuntu: Security Advisory (USN-1588-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1AI score
Exploits0References3
Rows per page
Query Builder