Lucene search
MitreCVE-2011-3150HistoryNov 29, 2011 - 5:55 p.m.
CVE-2011-3150
2011-11-2917:55:00
CWE-20
mitre
web.nvd.nist.gov
25
cve-2011-3150
ubuntu
software center
certificate validation
remote code execution
sensitive information
mitm attack
nvd
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.013
Percentile
86.1%
Software Center in Ubuntu 11.10, 11.04 10.10 does not properly validate server certificates, which allows remote attackers to execute arbitrary code or obtain sensitive information via a man-in-the-middle (MITM) attack.
Affected configurations
Node
canonicalubuntu_linuxMatch10.10
ORcanonicalubuntu_linuxMatch11.04
ORcanonicalubuntu_linuxMatch11.10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | 10.10 | cpe:2.3:o:canonical:ubuntu_linux:10.10:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | 11.04 | cpe:2.3:o:canonical:ubuntu_linux:11.04:*:*:*:*:*:*:* |
| canonical | ubuntu_linux | 11.10 | cpe:2.3:o:canonical:ubuntu_linux:11.10:*:*:*:*:*:*:* |
Related
openvas
openvas
Ubuntu: Security Advisory (USN-1270-1)
2011-11-25 00:00:00
Ubuntu Update for software-center USN-1270-1
2011-11-25 00:00:00
securityvulns
securityvulns
[USN-1270-1] Software Center vulnerability
2011-11-27 00:00:00
Software Center certificate spoofing
2011-11-27 00:00:00
nessus
nessus
Ubuntu 10.10 / 11.04 / 11.10 : software-center vulnerability (USN-1270-1)
2011-11-22 00:00:00
ubuntucve
ubuntucve
CVE-2011-3150
2011-11-21 00:00:00
prion
prion
Code injection
2011-11-29 17:55:00
ubuntu
ubuntu
Software Center vulnerability
2011-11-21 00:00:00
cvelist
cvelist
CVE-2011-3150
2011-11-29 17:00:00
nvd
nvd
CVE-2011-3150
2011-11-29 17:55:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.013
Percentile
86.1%
Related for CVE-2011-3150