Software Center certificate spoofing
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Software Center certificate spoofing
Published:
27.11.2011
Source:
BUGTRAQ
SecurityVulns ID:
12063
Type:
m-i-t-m
Level:
5
/10
Description:
insufficient check for server certificates.
Affected:
UBUNTU
:
Ubuntu Software Center 3.0
UBUNTU
:
Ubuntu Software Center 4.0
UBUNTU
:
Ubuntu Software Center 5.0
CVE:
CVE-2011-3150
(Software Center in Ubuntu 11.10, 11.04 10.10 does not properly validate server certificates, which allows remote attackers to execute arbitrary code or obtain sensitive information via a man-in-the-middle (MITM) attack.)
Original document
UBUNTU
,
[USN-1270-1] Software Center vulnerability
(
27.11.2011
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
