Lucene search
Ubuntu.comUB:CVE-2013-1051HistoryMar 14, 2013 - 12:00 a.m.
CVE-2013-1051
2013-03-1400:00:00
ubuntu.com
ubuntu.com
12
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.001
Percentile
32.4%
apt 0.8.16, 0.9.7, and possibly other versions does not properly handle
InRelease files, which allows man-in-the-middle attackers to modify
packages before installation via unknown vectors, possibly related to
integrity checking and the use of third-party repositories.
Notes
| Author | Note |
|---|---|
| mdeslaur | only oneiric+ support InRelease files |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-1762-1)
2013-03-15 00:00:00
Ubuntu Update for apt USN-1762-1
2013-03-15 00:00:00
ubuntu
ubuntu
APT vulnerability
2013-03-14 00:00:00
prion
prion
Code injection
2013-03-21 17:55:00
cvelist
cvelist
CVE-2013-1051
2013-03-21 17:00:00
cve
cve
CVE-2013-1051
2013-03-21 17:55:01
nessus
nessus
Ubuntu 11.10 / 12.04 LTS / 12.10 : apt vulnerability (USN-1762-1)
2013-03-15 00:00:00
securityvulns
securityvulns
[USN-1762-1] APT vulnerability
2013-03-24 00:00:00
apt protection bypass
2013-03-24 00:00:00
nvd
nvd
CVE-2013-1051
2013-03-21 17:55:01
debiancve
debiancve
CVE-2013-1051
2013-03-21 17:55:01
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
EPSS
0.001
Percentile
32.4%
Related for UB:CVE-2013-1051