1 results (0.003 seconds)

CVSS: 4.3EPSS: 0%CPEs: 12EXPL: 0

CVE-2012-0944

https://notcve.org/view.php?id=CVE-2012-0944

Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack. v0.43 y anteriores en Ubuntu 11.04, v11.10, y v12.04 LTS no autentica los paquetes cuando la transacción no es simulada, lo que permite a atacantes remotos a instalar paquetes a través de ataques "man-in-the-middle". • http://secunia.com/advisories/48688 http://ubuntu.com/usn/usn-1414-1 http://www.osvdb.org/80887 http://www.securityfocus.com/bid/52855 https://bugs.launchpad.net/ubuntu/%2Bsource/aptdaemon/%2Bbug/959131 https://exchange.xforce.ibmcloud.com/vulnerabilities/74553 • CWE-287: Improper Authentication •