Computer Security
[EN] securityvulns.ru no-pyccku


Software Center certificate spoofing
Published:27.11.2011
Source:
SecurityVulns ID:12063
Type:m-i-t-m
Threat Level:
5/10
Description:insufficient check for server certificates.
Affected:UBUNTU : Ubuntu Software Center 3.0
 UBUNTU : Ubuntu Software Center 4.0
 UBUNTU : Ubuntu Software Center 5.0
CVE:CVE-2011-3150 (Software Center in Ubuntu 11.10, 11.04 10.10 does not properly validate server certificates, which allows remote attackers to execute arbitrary code or obtain sensitive information via a man-in-the-middle (MITM) attack.)
Original documentdocumentUBUNTU, [USN-1270-1] Software Center vulnerability (27.11.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod