Lucene search
UbuntuUSN-1779-1HistoryMar 25, 2013 - 12:00 a.m.
GNOME Online Accounts vulnerability
2013-03-2500:00:00
ubuntu.com
38
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.003
Percentile
68.0%
Releases
- Ubuntu 12.10
- Ubuntu 12.04
- Ubuntu 11.10
Packages
- gnome-online-accounts - GNOME Online Accounts
Details
It was discovered that GNOME Online Accounts did not properly check SSL
certificates when configuring online accounts. If a remote attacker were
able to perform a machine-in-the-middle attack, this flaw could be exploited to
alter or compromise credentials and confidential information.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 12.10 | noarch | gnome-online-accounts | < 3.6.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | gir1.2-goa-1.0 | < 3.6.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libgoa-1.0-0 | < 3.6.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.10 | noarch | libgoa-1.0-dev | < 3.6.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | gnome-online-accounts | < 3.4.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | gir1.2-goa-1.0 | < 3.4.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libgoa-1.0-0 | < 3.4.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libgoa-1.0-dev | < 3.4.0-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | gnome-online-accounts | < 3.2.1-0ubuntu1.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | gir1.2-goa-1.0 | < 3.2.1-0ubuntu1.1 | UNKNOWN |
Related
ubuntucve
ubuntucve
CVE-2013-0240
2013-02-05 00:00:00
CVE-2013-1799
2013-02-05 00:00:00
debiancve
debiancve
CVE-2013-1799
2013-04-02 03:23:26
CVE-2013-0240
2013-04-02 03:22:21
securityvulns
securityvulns
GNOME Online Accounts SSL certificate spoofing
2013-04-08 00:00:00
[USN-1779-1] GNOME Online Accounts vulnerability
2013-04-08 00:00:00
cvelist
cvelist
CVE-2013-1799
2013-03-28 17:00:00
CVE-2013-0240
2013-03-28 17:00:00
openvas
openvas
Ubuntu Update for gnome-online-accounts USN-1779-1
2013-03-28 00:00:00
Ubuntu: Security Advisory (USN-1779-1)
2013-03-28 00:00:00
Fedora Update for gnome-online-accounts FEDORA-2013-2202
2013-03-01 00:00:00
prion
prion
Information disclosure
2013-04-02 03:23:00
Information disclosure
2013-04-02 03:22:00
nessus
nessus
Ubuntu 11.10 / 12.04 LTS / 12.10 : gnome-online-accounts vulnerability (USN-1779-1)
2013-03-26 00:00:00
openSUSE Security Update : gnome-online-accounts (openSUSE-SU-2013:0301-1)
2014-06-13 00:00:00
Fedora 17 : gnome-online-accounts-3.4.2-3.fc17 (2013-2202)
2013-02-27 00:00:00
nvd
nvd
CVE-2013-1799
2013-04-02 03:23:26
CVE-2013-0240
2013-04-02 03:22:21
cve
cve
CVE-2013-1799
2013-04-02 03:23:26
CVE-2013-0240
2013-04-02 03:22:21
fedora
fedora
[SECURITY] Fedora 17 Update: gnome-online-accounts-3.4.2-3.fc17
2013-02-27 02:41:30
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
6.3
Confidence
Low
EPSS
0.003
Percentile
68.0%
Related for USN-1779-1