Lucene search
Ubuntu.comUB:CVE-2011-3150HistoryNov 21, 2011 - 12:00 a.m.
CVE-2011-3150
2011-11-2100:00:00
ubuntu.com
ubuntu.com
11
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.013
Percentile
86.1%
Software Center in Ubuntu 11.10, 11.04 10.10 does not properly validate
server certificates, which allows remote attackers to execute arbitrary
code or obtain sensitive information via a man-in-the-middle (MITM) attack.
Bugs
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 10.10 | noarch | software-center | < 3.0.10ubuntu0.1 | UNKNOWN |
| ubuntu | 11.04 | noarch | software-center | < 4.0.5ubuntu0.1 | UNKNOWN |
| ubuntu | 11.10 | noarch | software-center | < 5.0.2ubuntu0.1 | UNKNOWN |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-1270-1)
2011-11-25 00:00:00
Ubuntu Update for software-center USN-1270-1
2011-11-25 00:00:00
securityvulns
securityvulns
[USN-1270-1] Software Center vulnerability
2011-11-27 00:00:00
Software Center certificate spoofing
2011-11-27 00:00:00
nessus
nessus
Ubuntu 10.10 / 11.04 / 11.10 : software-center vulnerability (USN-1270-1)
2011-11-22 00:00:00
prion
prion
Code injection
2011-11-29 17:55:00
ubuntu
ubuntu
Software Center vulnerability
2011-11-21 00:00:00
cvelist
cvelist
CVE-2011-3150
2011-11-29 17:00:00
cve
cve
CVE-2011-3150
2011-11-29 17:55:00
nvd
nvd
CVE-2011-3150
2011-11-29 17:55:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS
0.013
Percentile
86.1%
Related for UB:CVE-2011-3150