// For flags

CVE-2011-0724

 

Severity Score

9.3
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The Live DVD for Edubuntu 9.10, 10.04 LTS, and 10.10 does not correctly regenerate iTALC private keys after installation, which causes each installation to have the same fixed key, which allows remote attackers to gain privileges.

El Live de Edubuntu v9.10, v10.04 LTS, y v10.10 no regenera correctamente las claves privadas iTALC después de la instalación, lo que hace que cada instalación tenga una clave fija, lo cual permite a atacantes remotos obtener privilegios.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Complete
Integrity
Complete
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2011-02-01 CVE Reserved
  • 2011-02-11 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-310: Cryptographic Issues
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Ubuntu
Search vendor "Ubuntu"
Edubuntu
Search vendor "Ubuntu" for product "Edubuntu"
9.10
Search vendor "Ubuntu" for product "Edubuntu" and version "9.10"
-
Affected
in Ubuntu
Search vendor "Ubuntu"
Live Dvd
Search vendor "Ubuntu" for product "Live Dvd"
*-
Affected
Ubuntu
Search vendor "Ubuntu"
Edubuntu
Search vendor "Ubuntu" for product "Edubuntu"
10.04
Search vendor "Ubuntu" for product "Edubuntu" and version "10.04"
lts
Affected
in Ubuntu
Search vendor "Ubuntu"
Live Dvd
Search vendor "Ubuntu" for product "Live Dvd"
*-
Affected
Ubuntu
Search vendor "Ubuntu"
Edubuntu
Search vendor "Ubuntu" for product "Edubuntu"
10.10
Search vendor "Ubuntu" for product "Edubuntu" and version "10.10"
-
Affected
in Ubuntu
Search vendor "Ubuntu"
Live Dvd
Search vendor "Ubuntu" for product "Live Dvd"
*-
Affected