UbuntuUSN-1061-1iTALC vulnerability
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.2%
Releases
- Ubuntu 10.10
- Ubuntu 10.04
- Ubuntu 9.10
Packages
- italc - Intelligent Teaching and Learning with Computers
Details
Stéphane Graber discovered that the iTALC private keys shipped with the
Edubuntu Live DVD were not correctly regenerated once Edubuntu was
installed. If an iTALC client was installed with the vulnerable keys, a
remote attacker could gain control of the system. Only systems using keys
from the Edubuntu Live DVD were affected.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 9.10 | noarch | italc-client | < 1:1.0.9.1-0ubuntu16.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | italc-master | < 1:1.0.9.1-0ubuntu16.1 | UNKNOWN |
| Ubuntu | 9.10 | noarch | libitalc | < 1:1.0.9.1-0ubuntu16.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | italc-client | < 1:1.0.9.1-0ubuntu18.10.10.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | italc-master | < 1:1.0.9.1-0ubuntu18.10.10.1 | UNKNOWN |
| Ubuntu | 10.10 | noarch | libitalc | < 1:1.0.9.1-0ubuntu18.10.10.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | italc-client | < 1:1.0.9.1-0ubuntu18.10.04.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | italc-master | < 1:1.0.9.1-0ubuntu18.10.04.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | libitalc | < 1:1.0.9.1-0ubuntu18.10.04.1 | UNKNOWN |
References
Related
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
6.8 Medium
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
68.2%