Lucene search
Ubuntu.comUB:CVE-2012-0944HistoryApr 02, 2012 - 12:00 a.m.
CVE-2012-0944
2012-04-0200:00:00
ubuntu.com
ubuntu.com
9
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
73.0%
Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not
authenticate packages when the transaction is not simulated, which allows
remote attackers to install arbitrary packages via a man-in-the-middle
attack.
Bugs
Notes
| Author | Note |
|---|---|
| mdeslaur | only affects natty and higher |
Related
cve
cve
CVE-2012-0944
2012-06-04 20:55:02
openvas
openvas
Ubuntu: Security Advisory (USN-1414-1)
2012-04-05 00:00:00
Ubuntu Update for aptdaemon USN-1414-1
2012-04-05 00:00:00
prion
prion
Code injection
2012-06-04 20:55:00
nvd
nvd
CVE-2012-0944
2012-06-04 20:55:02
nessus
nessus
Ubuntu 11.04 / 11.10 : aptdaemon vulnerability (USN-1414-1)
2012-04-03 00:00:00
cvelist
cvelist
CVE-2012-0944
2012-06-04 20:00:00
ubuntu
ubuntu
Aptdaemon vulnerability
2012-04-02 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.004 Low
EPSS
Percentile
73.0%
Related for UB:CVE-2012-0944