Lucene search

K
ubuntucveUbuntu.comUB:CVE-2011-0640
HistoryJan 25, 2011 - 12:00 a.m.

CVE-2011-0640

2011-01-2500:00:00
ubuntu.com
ubuntu.com
9

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

The default configuration of udev on Linux does not warn the user before
enabling additional Human Interface Device (HID) functionality over USB,
which allows user-assisted attackers to execute arbitrary programs via
crafted USB data, as demonstrated by keyboard and mouse data sent by
malware on a smartphone that the user connected to the computer.

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

Related for UB:CVE-2011-0640