CVE-2012-0944
N/A
N/A
Summary
Aptdaemon 0.43 and earlier in Ubuntu 11.04, 11.10, and 12.04 LTS does not authenticate packages when the transaction is not simulated, which allows remote attackers to install arbitrary packages via a man-in-the-middle attack.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://www.securityfocus.com/bid/52855
- https://bugs.launchpad.net/ubuntu/%2Bsource/aptdaemon/%2Bbug/959131
- http://www.osvdb.org/80887
- http://ubuntu.com/usn/usn-1414-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74553
- http://secunia.com/advisories/48688
References
- http://www.securityfocus.com/bid/52855
- https://bugs.launchpad.net/ubuntu/%2Bsource/aptdaemon/%2Bbug/959131
- http://www.osvdb.org/80887
- http://ubuntu.com/usn/usn-1414-1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/74553
- http://secunia.com/advisories/48688
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.